quedlinburg.de

.de crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 8039 ms crawled 2026-05-19

DE · 212.184.216.56 · AS3320 Deutsche Telekom AG

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title

Quedlinburg - Welterbestadt

Language

Feeds

Einkaufserlebnis RSS

Open Graph

url: https://www.quedlinburg.de/
title: Quedlinburg - Welterbestadt
locale: de_DE
site name: Quedlinburg - Welterbestadt

Technology

Server: Apache

Social

Contact

Phone

+49394690550

Registration

Updated

2022-04-26

Name servers

ns5.kasserver.com.
ns6.kasserver.com.

DNS records live

NS

ns5.kasserver.com
ns6.kasserver.com

MX

10 w01c98fe.kasserver.com

TXT

MS=2F59227D46863F6001DF10D060B7CE846E70B93D

Verified for

Apple

Email authentication partial

SPF: v=spf1 a:k39375.coveto.de a:otc-de-spf.mms.t-systems-service.com a:mail.stadt-quedlinburg.de mx a ?all
neutral (?all)
DMARC: v=DMARC1; p=none;
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

R12

from 2026-05-12 to 2026-08-10

Expires in 82 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://quedlinburg.de/

present

content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak frame protection
missing Permissions Policy

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: ALLOW-FROM https://einkaufserlebnis-quedlinburg.de/
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-eval' 'unsafe-inline' data: mediastream: blob: filesystem:;