steiner-arzneimittel.de

.de crawl

First seen 2026-05-30 · Last seen 2026-05-31 · ok HTTP/1.1 200 907 ms crawled 2026-05-31

DE · 78.47.54.23 · AS24940 Hetzner Online GmbH

Reputation 67/100 listed in spam blocklist no dmarc policy

Classifying

HTML metadata

Title

Steiner Arzneimittel I Company of the Aristo Pharma Group

Description

The Steiner Arzneimittel site is specialized in the development, production and packaging of solid dosage forms containing cephalosporins.

Language

Generator

Drupal 10 (https://www.drupal.org)

Canonical

https://www.steiner-arzneimittel.de/en

Translations

Technology

Server: Apache
CMS: Drupal

Cookie consent

Cookiebot

Third-party hosts loaded (1)

consent.cookiebot.com×1

Registration

Updated

2018-01-25

Name servers

nsa5.schlundtech.de.
nsb5.schlundtech.de.
nsc5.schlundtech.de.
nsd5.schlundtech.de.

DNS records live

NS

nsa5.schlundtech.de
nsb5.schlundtech.de
nsc5.schlundtech.de
nsd5.schlundtech.de

MX

10 mx2.aristopharma.de
20 mx21.aristopharma.de

Email authentication weak

SPF: not published
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

R13

from 2026-04-30 to 2026-07-29

Expires in 59 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://www.steiner-arzneimittel.de/en

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(), geolocation=(), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=()
x-content-type-options: nosniff
content-security-policy: script-src 'self' 'unsafe-inline' cdnjs.cloudflare.com consent.cookiebot.com consentcdn.cookiebot.com maps.googleapis.com www.googletagmanager.com; style-src 'self' 'unsafe-inline' cdnjs.cloudflare.com fonts.googleapis.com; img-src 'self' data: maps.googleapis.com maps.gstatic.com region1.google-analytics.com www.google-analytics.com www.googletagmanager.com imgsct.cookiebot.com; font-src 'self' data: cdnjs.cloudflare.com fonts.gstatic.com; connect-src 'self' consentcdn.cookiebot.com maps.googleapis.com region1.google-analytics.com www.google-analytics.com www.googletagmanager.com; report-uri /report-csp-violation
strict-transport-security: max-age=31536000; includeSubDomains