rehasport-online.de

.de crawl

First seen 2026-05-03 · Last seen 2026-05-16 · ok HTTP/1.1 200 2482 ms crawled 2026-05-10

BE · 185.175.196.32 · AS34762 Combell NV

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Rehasport Online - das bundesweite Informationsportal für Rehasport!
Description: Das Informationsportal für Rehasport. Alles Wissenswerte über den Rehasport. Rehabilitationssport anbieten, verordnen, teilnehmen uvm. erfahren Sie hier!
Language: de
Generator: Elementor 4.0.7; features: additional_custom_breakpoints; settings: css_print_method-internal, google_font-enabled, font_display-auto
Canonical: https://rehasport-online.de/

Open Graph

url: https://rehasport-online.de/
title: Rehasport Online - das bundesweite Informationsportal für Rehasport!
locale: de_DE
site name: Team Rehasport
description: Das Informationsportal für Rehasport. Alles Wissenswerte über den Rehasport. Rehabilitationssport anbieten, verordnen, teilnehmen uvm. erfahren Sie hier!
updated time: 2026-04-28T17:03:19+02:00

Technology

Server: nginx
CMS: WordPress

Third-party hosts loaded (5)

meet.jit.si×2
cdn.trustindex.io×1
gmpg.org×1
hcaptcha.com×1
maps.googleapis.com×1

Social

Contact

Email

info@teamrehasport.de

Phone

+49711758577810

Address

Max-Eyth-Straße 13, 70771, Leinfelden-Echterdingen

Registration

Updated

2020-12-03

Name servers

ns1048.ui-dns.biz.
ns1048.ui-dns.com.
ns1048.ui-dns.de.
ns1048.ui-dns.org.

DNS records live

NS

ns1048.ui-dns.biz
ns1048.ui-dns.com
ns1048.ui-dns.de
ns1048.ui-dns.org

MX

10 mx00.ionos.de
10 mx01.ionos.de

Verified for

Google

Email authentication partial

SPF: v=spf1 include:_spf-eu.ionos.com ~all
softfail (~all)
DMARC: v=DMARC1; p=none;
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

R13

from 2026-03-16 to 2026-06-14

Expires in 25 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://rehasport-online.de/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

weak frame protection

Header values

referrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN, SAMEORIGIN
permissions-policy: accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=(), gamepad=(), serial=(), accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=(), gamepad=(), serial=()
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests;
strict-transport-security: max-age=63072000; includeSubDomains; preload
cross-origin-opener-policy: unsafe-none, unsafe-none
cross-origin-embedder-policy: unsafe-none; report-to='default', unsafe-none; report-to='default'
cross-origin-resource-policy: cross-origin, cross-origin