pronomix.de
HTML metadata
Technology
- Server
- Apache
- CMS
- Joomla
Contact
- Phone
Registration
- Updated
- 2021-05-03
- Name servers
-
- ns1a.dodns.net.
- ns2a.dodns.net.
DNS records live
- NS
-
- ns1a.dodns.net
- ns2a.dodns.net
- MX
-
- 10 pronomix-de.mail.protection.outlook.com
- TXT
-
MS=ms77831834
Email authentication strong
- SPF
-
v=spf1 a mx a:mx03.px-cloud.de ip4:85.158.1.131/32 include:spf.protection.outlook.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=quarantine; rua=mailto:technik@pronomix.de; ruf=mailto:technik@pronomix.de; fo=1policy: quarantine - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAujsWMn5HJ1AOWvxROzF5UNnbNloY3+wQ82bSuLA6VfHRqWvQWASeV2odQCtRuBonbLz9tXcarvEtWl… - mail:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+l…
selectors probed - selector1:
Certificate (current)
E7
Expires in 84 days
HTTP security headers
- present
-
- content-security-policy
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing content type protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- content-security-policy
default-src 'self' 'unsafe-eval' 'unsafe-inline' *.vimeo.com 3cx.pronomix.de:5001 matomo.px-cloud.de www.google-analytics.com *.googleapis.com *.gstatic.com; script-src-elem 'self' 'unsafe-inline' 3cx.pronomix.de:5001 matomo.px-cloud.de www.google-analytics.com *.googleapis.com *.gstatic.com; connect-src 'self' 3cx.pronomix.de:5001 matomo.px-cloud.de www.google-analytics.com *.googleapis.com *.gstatic.com; img-src 'self' data: *.googleapis.com *.gstatic.com;