schuwa.de
HTML metadata
Technology
- Server
- nginx
- Analytics
-
- Google Tag Manager
- Cookie consent
-
- Cookiebot
Third-party hosts loaded (2)
- consent.cookiebot.com×1
- www.googletagmanager.com×1
Social
Contact
Registration
- Updated
- 2025-01-23
- Name servers
-
- ns17.domaincontrol.com.
- ns18.domaincontrol.com.
DNS records live
- NS
-
- ns17.domaincontrol.com
- ns18.domaincontrol.com
- MX
-
- 20 mx1-eu.emailsecurity.app
- 20 mx2-eu.emailsecurity.app
- TXT
-
Show 6 TXT records
vhr7pvcv40jxczbxbjtbgjhbrp2dgssdMS=ms45632420apple-domain-verification=4J8x6htnmrNzGuNzatlassian-domain-verification=m2UthAyRL4QNfSzE8dcQAlR7AkIoTwtv1XKXvd6qXxTPSkPx1p/rGSQN1nIQnN/Rsophos-domain-verification=44ad8df7042d7539fabe0ed67b1d43dad793bf74b3e03efbf7b530a58c01a767ve7fIBjj0q+LZLJf8y7wnIN59zBYHl5JrVxEhcCBNtp4Hke8a2E3eODvbSyePL5UZwtm4Ys7pXUtLhWGLw8L1w==
Email authentication partial
- SPF
-
v=spf1 mx ip4:80.149.71.0/25 ip4:82.135.105.0/28 ip4:46.182.147.55/32 include:spf.protection.outlook.com include:spf.eu.exclaimer.net include:nl2go.com include:spf1.emailsecurity.app -allstrict (-all) - DMARC
-
v=DMARC1;p=none;sp=none;rua=mailto:dmarc@schuwa.de;ruf=mailto:dmarc@schuwa.de;rf=afrf;aspf=r;adkim=r;fo=spolicy: none (monitoring only) · sp=none - DKIM
-
- default:
v=DKIM1; k=rsa; s=email;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7anHWD3Z0DioZoMwayQlg0AMx4G2QsnOt44V4It9Ga77UiniT3wBVBZyXa/exrxEqNksqM… - selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDrk1NKTMtbBRC+NbFfYd4uSgYXVyJ/jpZnhFb/9m2xMjjR7P/Up29IUNjb1ZETE0X7UQPBN2p9eY04u1Vzln… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2YoF+y2lMJUHzQRh4jNil2v7/4u3nKWE+8++HdVKz/QdgcBtGd2B2TMrA0SCWvEJOjSAgEKPwN8pjV…
selectors probed - default:
Certificate (current)
Starfield Secure Certificate Authority - G2
Expires in 42 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
sameorigin- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.googletagmanager.com https://*.googleapis.com https://*.google.com https://www.google-analytics.com https://dsgvo.cb-friends.de https://www.google.com https://www.gstatic.com https://*.cookiebot.com; object-src *; style-src 'self' 'unsafe-inline' https://dsgvo.cb-friends.de https://use.fontawesome.com https://fonts.googleapis.com; img-src 'self' blob: data: 'unsafe-inline' https://*.googleapis.com https://*.gstatic.com https://*.google.com https://www.google-analytics.com https://dsgvo.cb-friends.de https://www.google.com https://www.gstatic.com https://*.cookiebot.com; media-src *; frame-src *; font-src *; connect-src *- strict-transport-security
max-age=31536000; includeSubDomains