stbverband.de
HTML metadata
Technology
- Server
- LEIBOLD
- CMS
- Gatsby
Social
Contact
Registration
- Updated
- 2015-04-07
- Name servers
-
- ns11.nameserver.de.
- ns12.nameserver.de.
DNS records live
- NS
-
- ns11.nameserver.de
- ns12.nameserver.de
- MX
-
- 10 stbverband-de.mail.protection.outlook.com
- TXT
-
v=spf1 include:spf.protection.outlook.com include:spfserver.auctores.de -allMS=ms61014168
Certificate (current)
E7
Expires in 68 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
deny- permissions-policy
camera=self, microphone=(), geolocation=(), payment=()- x-content-type-options
nosniff- content-security-policy
default-src 'self' https://stbverband.de/org.dreamox.cmsmox.divlayout/org/dreamox/cmsmox/divlayout/view/jsp/images/socialshare/svg/sprite.svg ;base-uri 'none';object-src 'none';form-action 'self' www.paypal.com www.sandbox.paypal.com www.ipg-online.com test.ipg-online.com;frame-ancestors 'self' ;connect-src 'self' 'self' data: https://cdn.plyr.io/3.5.10/plyr.svg;img-src 'self' stbverband.de data: www.paypal.com www.sandbox.paypal.com i.ytimg.com;media-src 'self' ;script-src 'self' 'strict-dynamic' 'nonce-apl38acrbf83f2ttfbbnbs3hqfj';style-src 'self' 'unsafe-inline' ;font-src 'self' ;manifest-src 'self';upgrade-insecure-requests;report-uri https://csp-report.auctores.de/resources/index;frame-src 'self' fsb-fachinstitut.de www.youtube.com www.youtube-nocookie.com pp.payengine.de pptest.payengine.de;- strict-transport-security
max-age=31536000