rostocker-rotlicht.de
rostocker-rotlicht.de
HTML metadata
Technology
- Server
- nginx
Third-party hosts loaded (2)
- ad-mv.de×2
- c.ad-mv.de×1
Registration
- Updated
- 2017-09-18
- Name servers
-
- ns1.webgo.de.
- ns2.webgo.de.
- ns3.webgo.de.
- ns4.webgo.de.
DNS records live
- NS
-
- ns1.webgo.de
- ns2.webgo.de
- ns3.webgo.de
- ns4.webgo.de
- MX
-
- 10 s125.goserver.host
- 20 s125.goserver.host
Email authentication strong
- SPF
-
v=spf1 a mx ip4:37.17.224.0/21 ip4:185.30.32.0/22 ip4:88.82.224.0/19 ip4:45.153.56.0/22 ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=quarantine;policy: quarantine - DKIM
-
- dkim:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqLfS/8VdMFhs8aUa544ub+OKsox+EwPhruF6Z/2NGC3rVI+vUQ23cX4qUiWvK6/65xR7hetjWcaLqg…
selectors probed - dkim:
Certificate (current)
R12
Expires in 69 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak frame protection
- weak content type protection
Header values
- referrer-policy
strict-origin-when-cross-origin, strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN, SAMEORIGIN- permissions-policy
geolocation=(self), microphone=(), camera=()- x-content-type-options
nosniff, nosniff- content-security-policy
default-src 'self'; img-src 'self' data: https://images.rotlicht-mv.de https://*.rotlicht-mv.de https://media.rotlicht.de https://rotlicht.de https://*.rotlicht.de https://ad-mv.de https://web-portale.net https://amateur-sofa.de https://c.ad-mv.de; script-src 'self' 'unsafe-inline' https://ad-mv.de https://c.ad-mv.de; style-src 'self' 'unsafe-inline'; connect-src 'self' https://c.ad-mv.de; frame-src https://ad-mv.de; base-uri 'self'; form-action 'self'- strict-transport-security
max-age=31536000; includeSubDomains; preload