sottoriva.com

.com crawl

First seen 2026-06-02 · Last seen 2026-06-03 · ok HTTP/1.1 200 614 ms crawled 2026-06-03

IT · 213.178.196.228 · AS34758 Axera SpA

Reputation 87/100 weak security headers no dmarc policy

sector food type homepage

HTML metadata

Title

Sottoriva - Bakery equipment and bakery machines - Sottoriva Spa

Description

Bakery machines and equipment. Discover our range of dough plants, dough sheeters, moulders, dividers and ovens.

Language

Canonical

https://www.sottoriva.com/eng/

Translations

Open Graph

url: https://www.sottoriva.com/eng/
title: Sottoriva
description: We are a leading worldwide bakery equipment supplier.

Technology

Server: nginx
CMS: WordPress
Stack: PHP

Analytics

Google Tag Manager

Ads

Meta Pixel

Fonts

Font Awesome

Third-party hosts loaded (4)

use.fontawesome.com×2
connect.facebook.net×1
www.axera.it×1
www.googletagmanager.com×1

Social

Contact

Email

sottoriva@sottoriva.com

Phone

00390445595111

Address

Via Vittorio Veneto, 63, 36035, Marano Vicentino, VI, IT

Registration

Registrar

Tucows Domains Inc.

Created

1998-07-08

Expires

2026-07-07 20 days left

Updated

2026-01-16

Name servers

dns1.axera.it
dns2.axera.it

DNS records live

NS

dns1.axera.it
dns2.axera.it

MX

0 sottoriva-com.mail.protection.outlook.com
10 mx.sottoriva.com

TXT

2PlXYBkXhtEFEITbkCfkYJJpAZqgd8QF5UrEuRGAx/yCy1xfKGRfAVF7FAOEFxY/pai+zU1PdTslCM6SdokIQA==

Verified for

Microsoft 365

Email authentication weak

SPF

v=spf1 ip4:85.34.95.128/29 ip4:80.244.119.24/29 ip4:178.251.77.224/29 include:_spf.axera.it include:spf.protection.outlook.com -all

strict (-all)

DMARC

not published

DKIM

mail: v=DKIM1; h=sha256; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPXkl56DRwnGqvCiO59NlBUHhzWGNlSS0Q6f5+sFVkQIrvshYuRqnpgIAlnnlo+PytD9…

selectors probed

Certificate (current)

R12

from 2026-05-23 to 2026-08-21

Expires in 65 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://sottoriva.com/eng/sottoriva-1

present

content-security-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: default-src 'self' 'unsafe-inline' 'frame-src' sottoriva.com *.sottoriva.com youtube.com *.youtube.com *.telemar.it *.google.com *.googletagmanager.com *.google-analytics.com *.doubleclick.net connect.facebook.net use.fontawesome.com fonts.googleapis.com fonts.gstatic.com *.facebook.com *.axera.it youtu.be *.youtube-nocookie.com

Links to (9)

Linked from (1)

bakeres.pl×1

Use this data via API

Everything on this page for sottoriva.com is available as JSON from the indexo.dev REST & MCP API.

curl "https://indexo.dev/api/v1/domains/sottoriva.com" \
  -H "X-API-Key: idx_..."

Read the docs & get a free key →