power2all.com
HTML metadata
Technology
- CDN
- Cloudflare
- Fonts
-
- Google Fonts
Third-party hosts loaded (4)
- cdn.jsdelivr.net×3
- fonts.googleapis.com×2
- cdnjs.cloudflare.com×1
- fonts.gstatic.com×1
Social
Registration
- Registrar
- INWX GmbH
- Created
- 2010-06-08
- Expires
- 2026-06-08 19 days left
- Updated
- 2025-05-27
- Name servers
-
- iris.ns.cloudflare.com
- ken.ns.cloudflare.com
DNS records live
- NS
-
- iris.ns.cloudflare.com
- ken.ns.cloudflare.com
- MX
-
- 1 mx.power2all.com
- TXT
-
google-site-verification=RX0YZsqnJJG3whQw2wyw1xX2P-hQkD3WA7N_U-2nJvw
Email authentication strong
- SPF
-
v=spf1 ip4:109.201.134.176/28 ip4:109.201.134.192/30 ip6:2a00:1768:1001:26::/64 -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; rua=mailto:dmarc@power2all.compolicy: quarantine - DKIM
-
- dkim:
v=DKIM1;k=rsa;t=s;s=email;p=MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwRn8Fmuk7lB0lISuwbjZEP1XEnN4ql/t1XgVI/d+zOSCItL188nisUAI4k2LQcGXFrx+…
selectors probed - dkim:
Certificate (current)
WE1
Expires in 85 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
DENY- x-content-type-options
nosniff- content-security-policy
default-src * 'unsafe-inline' 'unsafe-eval' data: blob:; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; img-src * data: blob:; font-src * data:; connect-src *; media-src *; object-src *; frame-src *; worker-src * blob:; form-action *; frame-ancestors *;- strict-transport-security
max-age=31536000; includeSubDomains; preload