stadtwerke-gt.de

HTML metadata

Technology

Server

nginx

Social

• linkedin
• instagram
• facebook
• youtube

Contact

Phone

• +495241822671
• +495241822500
• 05241820

Registration

Updated

2021-08-27

Name servers

• ns47.domaincontrol.com.
• ns48.domaincontrol.com.

DNS records live

NS

• ns47.domaincontrol.com
• ns48.domaincontrol.com

MX

• 100 mailserv1.aov.de
• 100 mailserv2.aov.de
• 200 mailserv3.aov.de

TXT

• amazonses:Y1JOaxBFSgD7UGoMVmfP4SP2hU/5tkX9rA63NwVCfAs=
• MS=D657831E6DD4FA58D257D35563BAB76C8BFE68C0

Verified for

• Apple
• Google

Email authentication strong

SPF

v=spf1 mx include:spf.mandrillapp.com include:spf.flowmailer.net include:mailgun.org include:_spf.salesforce.com include:ispgateway.de ip4:91.194.108.84 ip4:91.194.108.85 ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc@inbound.flowmailer.net; ruf=mailto:dmarc@inbound.flowmailer.net; fo=1;

policy: none (monitoring only)

DKIM

• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvtIGrQldvEd2xX+UuUVytkTR/Qy4EAH50l77p3Fkb7ebRU1g/a1+DPQMi79TR4iQ3R1h8YptOOD1R+QqZ1…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCwy+6d0IuyLREJiSjT5j+HXvL1yGWL+n1bB/hoczNG91GKK4Vz4vrc/BloQv0/N6J5DL20trT/jE8nPZ4YHBVezc…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.stadtwerke-gt.de/privatkunden/index.php

present

• x-content-type-options

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing Referrer Policy
• missing Permissions Policy

Links to (12)

• advowhistle.de×2
• facebook.com×2
• instagram.com×2
• jaervesauna-guetersloh.de×2
• linkedin.com×2
• netze-gt.de×2
• nordbad-guetersloh.de×2
• shuttle-gt.de×2
• stadtbus-gt.de×2
• welle-guetersloh.de×2
• xing.com×2
• youtube.com×2

Linked from (3)

• netze-gt.de×2
• smartoptimo.de×2
• gt-info.de×1