indexo.dev

rywal.com.pl

.pl crawl

First seen 2026-05-27 · Last seen 2026-05-31 · ok HTTP/1.1 200 802 ms crawled 2026-05-30

PL · 80.51.216.6 · AS5617 Orange Polska Spolka Akcyjna

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
RYWAL-RHC | Spawarki, materiały i sprzęt spawalniczy
Description
Spawarki, materiały spawalnicze, osprzęt, środki ochrony pracy i serwis dla przemysłu. RYWAL-RHC to ogólnopolska sieć salonów spawalniczych.
Language
pl-pl
Canonical
https://www.rywal.com.pl/
Feeds

Open Graph

url
https://www.rywal.com.pl/
title
RYWAL-RHC | Spawarki, materiały i sprzęt spawalniczy
site name
RYWAL-RHC
description
Spawarki, materiały spawalnicze, osprzęt, środki ochrony pracy i serwis dla przemysłu. RYWAL-RHC to ogólnopolska sieć salonów spawalniczych.

Technology

Server
Apache
CMS
Joomla
PHP
8.3.8 security-only
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • www.facebook.com×1
  • www.googletagmanager.com×1

Social

Contact

Address
Odlewnicza 4, 03-231, Warszawa, Mazowieckie

DNS records live

NS
  • ns1.minwest.com.pl
  • ns2.minwest.com.pl
MX
  • 10 mxgw01.minwest.com.pl
TXT
  • l40j7bc9kh61p4ckhfq592z4yb4mh1w6
Verified for
  • Google

Email authentication partial

SPF
v=spf1 mx a ip4:80.51.216.4 ip4:80.51.216.7 ip4:80.51.216.15 ip4:37.247.211.165 ip4:37.247.211.164 a:spec.minwest.com.pl a:mxout01.minwest.com.pl a:mxgw01.minwest.com.pl a:mxout02.minwest.com.pl a:mxgw02.minwest.com.pl ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc@rywal.com.pl;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

RapidSSL TLS RSA CA G1
from 2026-01-23 to 2027-01-09
Expires in 222 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.rywal.com.pl/

present
  • strict-transport-security
  • content-security-policy
  • content-security-policy-report-only
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
Header values
referrer-policy
strict-origin-when-cross-origin
permissions-policy
geolocation=(), microphone=(), camera=(), payment=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; base-uri 'self'; object-src 'none'; worker-src 'self' blob:; upgrade-insecure-requests; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.rywal.com.pl https://*.rywaldm.pl https://www.googletagmanager.com https://www.clarity.ms https://*.clarity.ms https://c.bing.com https://*.google-analytics.com https://*.analytics.google.com https://pagead2.googlesyndication.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.doubleclick.net https://connect.facebook.net https://*.tawk.to https://tawk.link https://*.smartlook.com https://*.smartlook.cloud https://*.gstatic.com https://*.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://*.bootstrapcdn.com https://*.cloudflare.com https://*.cloudfront.net https://*.jsdelivr.net https://*.youtube.com https://s.w.org https://code.jquery.com https://www.google.co
strict-transport-security
max-age=31536000; includeSubDomains
content-security-policy-report-only
default-src https: data: blob:; base-uri blob: data: https:;

Links to (16)

Linked from (2)