scscan.cc
HTML metadata
Technology
- Server
- Tengine
Third-party hosts loaded (1)
- gcdn.meidianbang.cn×102
Contact
- Phone
Registration
- Registrar
- Alibaba Cloud Computing (Beijing) Co., Ltd.
- Created
- 2018-09-07
- Expires
- 2028-09-07 841 days left
- Updated
- 2022-06-17
- Name servers
-
- dns11.hichina.com
- dns12.hichina.com
DNS records live
- NS
-
- dns11.hichina.com
- dns12.hichina.com
- MX
-
- 10 hzmx02.mxmail.netease.com
- 5 hzmx01.mxmail.netease.com
Email authentication strong
- SPF
-
v=spf1 include:spf.163.com -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; fo=1; ruf=mailto:dmarc@qiye.163.com; rua=mailto:dmarc_report@qiye.163.compolicy: quarantine - DKIM
-
- default:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHQs/Y3DLcOo8USMSgpy5XYg/Kjy1fQARZ/R0/I1cuEZORq3n/VNHffxDwXV1hp19QQbMK4rg2AHyo…
selectors probed - default:
Certificates
Loading certificate
HTTP security headers
- present
-
- content-security-policy
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-embedder-policy
- cross-origin-resource-policy
- findings
-
- checked over plain HTTP
- CSP allows unsafe inline scripts/styles
- missing frame protection
Header values
- referrer-policy
strict-origin-when-cross-origin- permissions-policy
camera=(self), microphone=(self), geolocation=(self)- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self'; default-src 'self' http: https: ws: wss:; script-src 'self' http: https: 'unsafe-eval' 'unsafe-inline'; img-src 'self' http: https: data:; style-src 'unsafe-inline' http: https:; font-src 'self' http: https: data:;- cross-origin-opener-policy
same-origin- cross-origin-embedder-policy
cross-origin- cross-origin-resource-policy
cross-origin