popso.it

HTML metadata

Title: Redirect - BPER
Language: it

DNS records live

NS

ns-1375.awsdns-43.org
ns-1642.awsdns-13.co.uk
ns-452.awsdns-56.com
ns-703.awsdns-23.net

MX

10 popso-it.mail.protection.outlook.com

TXT

Show 6 TXT records

aIDlQnT46/6UnoSdlOCc5+Mrfh4iXaLDReGv+57OGSQ=
aIDlQnT46/6UnoSdlOCc533Rz4D7/Umn84eZ40MpC98=
aIDlQnT46/6UnoSdlOCc59w/qsczBiZoy/gw1LkcP9k=
aIDlQnT46/6UnoSdlOCc5z2CYJCZ/O3sBG2EgX43cz4=
m6HuTuprhqVcVDJm7F7xMvuAMC+mu2GDKsOyILSQiwafTl3U2rzojaJO/sx+j5A1x8SDfM9HNczmMCUdAcDTew==
spf2.0/pra a mx ip4:93.41.189.133 ip4:81.208.118.110 ip4:81.208.118.103 include:spf.protection.outlook.com ~all

Verified for

Cisco
Google
Microsoft 365

Email authentication partial

SPF

v=spf1 a mx ip4:93.41.189.133 ip4:81.208.118.110 ip4:81.208.118.103 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=none; adkim=r; aspf=r; pct=100; rua=mailto:rua_2e02eb9134629d3e@eu.report.letsdmarc.com

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyqL+TCW5eYjJNVN2aazRfveLpSx7o/Tfr2hPj5fTTi/6vvfbfi5i7aOfaVBcwC0OOR+mwzX3P9wW06…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQNbj949TPHuKu+iFuJUkz4xwucNBYkoTw0QUFHJOGy6PX2jxwOvZL5bSBnmq7Xb5oij+uEr6R8zwL…

selectors probed

Certificate (current)

E8

from 2026-04-21 to 2026-07-20

Expires in 60 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 55/100 Checked live page: https://www.popso.it

present

content-security-policy
x-content-type-options
permissions-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Referrer Policy

Header values

permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(), geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' https://*.popso.it; script-src 'self' https://*.popso.it https://*.googleapis.com https://*.brightcove.net https://*.google.com https://*.gstatic.com https://*.zencdn.net https://*.googletagmanager.com https://*.google-analytics.com 'unsafe-inline' 'unsafe-eval'; style-src 'self' https://*.popso.it https://*.googleapis.com https://*.gstatic.com 'unsafe-inline'; object-src 'self' https://*.popso.it; base-uri 'self' https://*.popso.it; connect-src 'self' https://*.popso.it https://*.onthemap.io https://*.brightcove.com https://*.brightcovecdn.com https://*.boltdns.net https://*.googleapis.com https://*.google.com http://manifest.prod.boltdns.net https://*.googletagmanager.com https://*.google-analytics.com; font-src 'self' https://*.popso.it https://*.gstatic.com https://*.zencdn.net https://*.cloudflare.com data:; frame-src 'self' https://*.popso.it https://*.google.com https://*.computercheck24.com https://*.googletagmanager.com https://*.youtube-nocookie.com; img-sr
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: same-site

Links to (1)

bper.it×1

Linked from (2)

ccipu.org×1
livigno.eu×1