indexo.dev

schmedes-gmbh.de

.de crawl

First seen 2026-05-07 · Last seen 2026-05-07 · ok HTTP/1.1 200 466 ms crawled 2026-05-13

DE · 85.8.83.173 · AS9145 EWE-Tel GmbH

Reputation 94/100 dmarc monitor-only

sector media news type blog

HTML metadata

Title
Willkommen
Language
de-de
Translations
  • de
  • en

Technology

Server
Apache
CMS
Joomla

Contact

Phone

Registration

Updated
2008-07-17
Name servers
  • ns1.ns-serve.net.
  • ns2.ns-serve.net.

DNS records live

NS
  • ns1.ns-serve.net
  • ns2.ns-serve.net
MX
  • 10 mx-proxy-01.schmedes-gmbh.de
Verified for
  • Microsoft 365

Email authentication partial

SPF
v=spf1 a mx a:mx-proxy-01.schmedes-gmbh.de ip4:212.95.106.235/32 ip4:85.8.83.173/32 ip4:80.245.135.206/32 ip4:145.253.159.2/32 -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:administrator@schmedes-gmbh.de; ruf=mailto:administrator@schmedes-gmbh.de;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

Thawte TLS RSA CA G1
from 2025-12-03 to 2026-12-03
Expires in 196 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://schmedes-gmbh.de/

present
  • strict-transport-security
  • content-security-policy
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • cross-origin-opener-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-inline' *.googleapis.com *.google.com;
strict-transport-security
max-age=62072000; includeSubDomains; preload
cross-origin-opener-policy
same-origin
content-security-policy-report-only
frame-ancestors 'self'

Linked from (1)