portalpacienta.cz
HTML metadata
Registration
- Registrar
- REG-WEDOS
- Created
- 2019-12-18
- Expires
- 2029-12-18 1294 days left
- Updated
- 2025-02-05
- Name servers
-
- ns.wedos.com
- ns.wedos.cz
- ns.wedos.eu
- ns.wedos.net
DNS records live
- NS
-
- ns.wedos.com
- ns.wedos.cz
- ns.wedos.eu
- ns.wedos.net
- TXT
-
d3bmvemki3vtmo4o6hlegkh0tt
Email authentication no MX
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
Go Daddy Secure Certificate Authority - G2
Expires in 11 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
no-referrer- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self'; object-src 'none'; font-src * null data: blob: 'unsafe-inline' 'unsafe-eval'; img-src * null data: blob: 'unsafe-inline' 'unsafe-eval'; frame-src 'self' https://maps.google.com https://www.youtube-nocookie.com https://www.youtube.com https://player.vimeo.com https://signosoft.com/ https://sandbox.signosoft.com/ https://www.google.com/; connect-src 'self'; frame-ancestors 'self' https://portalpacienta.cz/Auth/; sandbox allow-forms allow-same-origin allow-scripts allow-modals allow-popups allow-downloads; base-uri 'self'; style-src-attr * null data: blob: 'unsafe-inline' 'unsafe-eval'; style-src * null data: blob: 'unsafe-inline' 'unsafe-eval'; script-src * null data: blob: 'unsafe-inline' 'unsafe-eval';- strict-transport-security
max-age=31536000; includeSubDomains