strasser-steine.at

HTML metadata

Technology

Server

nginx

CMS

WordPress 6.9.4

PHP

8.3.31 security-only

jQuery

3.7.1

Third-party hosts loaded (2)

• ajax.googleapis.com×2
• www.facebook.com×1

Social

• facebook
• instagram
• youtube
• pinterest

Contact

Email

• office@strasser-steine.at
• i.m.office@strasser-steine.at

Phone

• +43 7232 22 270

DNS records live

NS

• dns1.a1.net
• dns2.a1.net
• dns3.a1.net

MX

• 10 mx-a.secumail.de
• 10 mx-b.secumail.de

TXT

• atlassian-sending-domain-verification=9335b4c2-efc3-4480-a6ec-fcb845cba4ae
• YMKNc7I0zbCXhVZFO+IAgUVbStbZdxYlRYAyU7zM9l2/648aJ3LrzyowMEp2hZps8xaFLUN9jPH+pI/5i6apMw==

Verified for

• Atlassian
• Microsoft 365

Email authentication partial

SPF

v=spf1 a ip4:80.120.2.168/29 ip4:193.104.82.0/24 include:spf.protection.outlook.com include:spf-de.emailsignatures365.com -all

strict (-all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDi/+Y4mbN0bC8WwX6obIkEdydxe+TgsR+wlMN2KPxaHEiqupwWTE8RSYYaRVraFCuYli2jo3T6nGtNXGiKaw…
• selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGzjghkZxV3wCjYenYsvObnzHZQKlbuqoluUwrJi3MKz/gCfYSngkTOuEqDR2qnGgAovvEd3NSuEzS…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://strasser-steine.at/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (12)

• youtube.com×1
• xing-share.com×1
• twitter.com×1
• tumblr.com×1
• pinterest.com×1
• linkedin.com×1
• instagram.com×1
• facebook.com×1
• expose-it.com×1
• efre.gv.at×1
• cookiedatabase.org×1
• alpinova.at×1

Linked from (2)

• fivesquare.ai×1
• ebs-kuchl.at×1