pollisrl.it

.it crawl

First seen 2026-05-31 · Last seen 2026-06-01 · ok HTTP/1.1 200 1585 ms crawled 2026-06-01

IT · 91.142.143.200 · AS20836 CDLAN SpA

Reputation 69/100 wrong cert dmarc monitor-only

Classifying

HTML metadata

Title: Software gestionali Belluno: Polli srl, software per aziende e hotel Trento, Treviso e Vicenza - Polli srl - Servizi e Tecnologie Informatiche
Description: Polli srl è il punto di riferimento per software gestionali a Belluno, agenzia che propone consulenza e assistenza in software per imprese, hotel, ristoranti e negozi, operando anche nei territori di Trento, Treviso e Vicenza.
Language: it
Generator: Passweb - Il Cms di Passepartout - https://www.passepartout.net/software/passweb

Technology

CMS: Gatsby
jQuery: 3.7.1
Stack: ASP.NET

Analytics

Google Tag Manager

Social widgets

YouTube Embed

Third-party hosts loaded (3)

www.youtube.com×3
www.passepartoutnews.passweb.it×2
www.googletagmanager.com×1

Social

Contact

Email

info@pollisrl.it

Phone

+390439302077

DNS records live

NS

ns1.x4w.net
ns2.rhx.info

MX

10 pollisrl-it.mail.protection.outlook.com

Verified for

Brevo
Microsoft 365

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com include:_spf.rhx.it a:smtp.satweb.cloud -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com

policy: none (monitoring only)

DKIM

mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current) wrong cert

Sectigo Public Server Authentication CA DV R36

from 2025-06-24 to 2026-07-18

Expires in 43 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.pollisrl.it/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
cross-origin-opener-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' blob: data: ;frame-ancestors 'self'
strict-transport-security: max-age=31536000
cross-origin-opener-policy: same-origin-allow-popups

Links to (7)

Linked from (1)

bottegadolomitica.it×1