prg.aero
prg.aero
HTML metadata
Technology
- CMS
- Drupal
- Analytics
-
- Google Tag Manager
- Social widgets
-
- Twitter Widget
Third-party hosts loaded (7)
- www.prg.aero×27
- d2b5gmzfxp2iy.cloudfront.net×22
- cdn.jsdelivr.net×3
- cdnjs.cloudflare.com×2
- challenges.cloudflare.com×1
- platform.twitter.com×1
- www.googletagmanager.com×1
Social
Contact
- Phone
Registration
- Registrar
- Key-Systems GmbH
- Created
- 2002-04-10
- Expires
- 2027-04-10 311 days left
- Updated
- 2026-04-07
- Name servers
-
- kat.cah.cz
- mat.cah.cz
- pat.cah.cz
DNS records live
- NS
-
- kat.cah.cz
- mat.cah.cz
- pat.cah.cz
- MX
-
- 10 astra.prg.aero
- 20 mercury.prg.aero
- 30 astra2.prg.aero
- 40 mercury2.prg.aero
- TXT
-
ppe-0cdcb2f2604fb656ff59ee06a0745f4005813352autodesk-domain-verification=dKl5n-_YOcxsjBFI7gBNSGF1zaARJyUzEW1Duq6JdfP56kOctzd5blx9wTrVaDf85uI+dbm1InUH38Fv4hb8sLXfCqaAgsuNE7CbPMA1tQ==
- Verified for
-
- Atlassian
- Canva
- Figma
- HARICA
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 ip4:193.86.243.66 ip4:193.86.243.68 ip4:212.11.96.66 ip4:212.11.96.68 mx include:_spf.mlsend.com include:_spf.upgates.com include:spf.affilbox.cz ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=quarantine; sp=none; adkim=s; aspf=s; rua=mailto:fdmarc@prg.aero,mailto:firewall.admins@prg.aero; ruf=mailto:fdmarc@prg.aero,mailto:firewall.admins@prg.aero; fo=1;policy: quarantine · sp=none - DKIM
-
- s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoI90v1AaqN+YwBxEVS8bZ7UEb4sqpyeYFTYwYr0UbR+pGaRsXEi5d/vBZFs9Bt+EOKh1q8qFZS6N/M6g68… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDgQGAvFRz8Z/eEQHXVBlz81Bj/mcD/G4oe7YilepdhAxej0793NEAhgPpZJ6oFR0sQaQzUs9NDZtOT1e1/yY6m81…
selectors probed - s1:
Certificate (current)
Thawte TLS RSA CA G1
Expires in 169 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-embedder-policy
- cross-origin-resource-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak frame protection
- weak content type protection
Header values
- referrer-policy
no-referrer, no-referrer, strict-origin-when-cross-origin- x-frame-options
deny, deny- permissions-policy
geolocation=(), midi=(), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), fullscreen=(self), payment=(), usb=()- x-content-type-options
nosniff, nosniff- content-security-policy
default-src 'self' www.prg.aero prg.aero d2b5gmzfxp2iy.cloudfront.net; object-src 'none'; media-src 'self' www.prg.aero prg.aero *.cloudfront.net *.cdninstagram.com *.fbcdn.net *.brxcdn.com; font-src 'self' www.prg.aero prg.aero data: *.cloudfront.net fonts.gstatic.com *.prg.aero *.brxcdn.com; style-src 'self' www.prg.aero prg.aero 'unsafe-inline' unpkg.com cdnjs.cloudflare.com cdn.jsdelivr.net fonts.googleapis.com d2b5gmzfxp2iy.cloudfront.net *.brxcdn.com; connect-src 'self' www.prg.aero prg.aero c.seznam.cz h.seznam.cz *.facebook.com *.clarity.ms c.bing.com *.prg.aero *.bloomreach.com *.exponea.com *.getyourguide.com prague-airport.maps.arcgis.com *.cookiebot.com *.google.com *.analytics.google.com maps.googleapis.com *.google-analytics.com *.googlesyndication.com stats.g.doubleclick.net *.pingdom.net *.teads.tv widget.getyourguide.com prgaero-api.dev3.voatt.cz prgaero-api-2.dev3.voatt.cz api.prg.aero apit.prg.aero prgaero-api.ddev.site core.service.elfs- strict-transport-security
max-age=31536000;includeSubDomains, max-age=31536000; includeSubDomains; preload- cross-origin-opener-policy
same-origin- cross-origin-embedder-policy
unsafe-none- cross-origin-resource-policy
same-origin