reifen-lorenz.de
HTML metadata
Technology
- Server
- Apache
Social
Contact
Registration
- Updated
- 2026-04-13
- Name servers
-
- a.ns14.net.
- b.ns14.net.
- c.ns14.net.
- d.ns14.net.
DNS records live
- NS
-
- a.ns14.net
- b.ns14.net
- c.ns14.net
- d.ns14.net
- MX
-
- 10 reifenlorenz.in.tmes.trendmicro.eu
- TXT
-
Show 6 TXT records
crsend._domainkey.reifen-lorenz.deln2ftkgjn06p98nmiionb56vr7tmes=0e8aa2cbeca18f3dbeed57158decb51c6tubu0e9aba9jbsfh9nudh4v7lMS=6E96ACA8C5094029CB42BC696AF74BFC3625D00Ev=DMARC1; p=none; rua=mailto:reifenlorenz.in.tmes.trendmicro.eu
- Verified for
-
- Apple
- GlobalSign
Email authentication weak
- SPF
-
v=spf1 a mx include:spf.tmes.trendmicro.com ip4:134.119.225.154 ip4:134.119.129.110 include:spf.mas.t-systems-service.com a:spf.mas.t-systems-service.com -allstrict (-all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
Thawte TLS RSA CA G1
Expires in 35 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
sameorigin- permissions-policy
accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=*, geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=*, publickey-credentials-get=(), sync-xhr=(), usb=(), screen-wake-lock=(), xr-spatial-tracking=()- x-content-type-options
nosniff- content-security-policy
base-uri 'self'; default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: data: *.reifen-lorenz.de *.clarity.ms app.mailjet.com *.mapbox.com *.bugherd.com *.doubleclick.net *.youtube.com *.facebook.net *.googleadservices.com *.googletagmanager.com *.google-analytics.com *.googleapis.com *.cloudfront.net; frame-src 'self' blob: *.reifen-lorenz.de *.mjt.lu app.mailjet.com *.mapbox.com *.bugherd.com *.google.com *.youtube.com *.youtube-nocookie.com *.vimeo.com *.doubleclick.net; img-src 'self' blob: data: *.reifen-lorenz.de eprel.ec.europa.eu *.tyre-shopping.com app.mailjet.com *.bugherd.com *.mapbox.com *.facebook.com *.google.com *.google.de *.amazonaws.com *.cloudfront.net img.youtube.com maps.gstatic.com *.googleapis.com *.google-analytics.com *.googletagmanager.com; style-src 'self' 'unsafe-inline' *.mapbox.com *.googleapis.com *.cloudfront.net *.google-analytics.com *.googletagmanager.com; font-src 'self' 'unsafe-inline' 'unsafe-eval' data: *.mapbox.com *.cloudfront- strict-transport-security
max-age=63072000; includeSubDomains; preload