salzburgerjobs.at
salzburgerjobs.at
HTML metadata
Technology
- CMS
- Next.js
Third-party hosts loaded (1)
- a.storyblok.com×17
Social
DNS records live
- NS
-
- ns5.kasserver.com
- ns6.kasserver.com
- MX
-
- 10 w00e9360.kasserver.com
- TXT
-
hfkc22rfrllth6d7s1a3fqerah3s232humt0pmpfrni2m265et3j
- Verified for
-
- GlobalSign
Email authentication weak
- SPF
-
v=spf1 a mx include:u18126827.wl078.sendgrid.net -allstrict (-all) - DMARC
- not published
- DKIM
-
- s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw00TECbDWwfFdNDtds2Xoj3jsKlQzc5wbSFrEPXcOYAkDPTpb3oWgLdLKo0duO+EhaqXEe6Yvf+dg9WaPF… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCr+mn/2VMIneenEr5Bk7ze3TUS0wbqidsok9hRJhBtx0ZYYPsdQ6TAffxHejaxQgzN5/l/+ByIkveJP9bThdqpaL…
selectors probed - s1:
Certificate (current)
YR1
Expires in 87 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- short HSTS max-age
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
no-referrer, strict-origin-when-cross-origin- x-frame-options
DENY- permissions-policy
accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=()- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self' https://newapp.etracker.com https://*.devloc.site; default-src 'self' *.storyblok.com; script-src 'self' 'nonce-MzBmMjlmMDMtYTg0YS00MjIxLWJhZDAtMzYxMGY4NWZiYzVk' 'strict-dynamic' 'unsafe-eval' *.googletagmanager.com *.googlesyndication.com *.google-analytics.com *.googleadservices.com *.adtrafficquality.google *.google.com *.google.de *.google.at *.google.ch *.google.pl snap.licdn.com connect.facebook.net accent.tirolerjobs.at *.devloc.site *.gstatic.com t--1.0.0--i6nnxym9p9wb--f.tirolerjobs.at *.etracker.com *.etracker.de *.spotify.com stats.salzburgerjobs.at ipinfo.io *.digiaccess.org front.salzburgerjobs.at cdn.ckeditor.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com t--1.0.0--i6nnxym9p9wb--f.tirolerjobs.at accent.tirolerjobs.at *.devloc.site *.digiaccess.org cdn.ckeditor.com; img-src 'self' data: blob: www.salzburgerjobs.at beta2.salzburgerjobs.at www.facebook.com *.google-analytics.com *.analytics.google.com *.googletagmanager.com *.googlesyndicat- strict-transport-security
max-age=2592000; includeSubDomains