suma-ev.de
HTML metadata
Technology
- CMS
- WordPress
Third-party hosts loaded (1)
- gmpg.org×1
Registration
- Updated
- 2023-11-02
- Name servers
-
- ns2.inwx.de.
- ns3.inwx.eu.
- ns.inwx.de.
DNS records live
- NS
-
- ns.inwx.de
- ns2.inwx.de
- ns3.inwx.eu
- MX
-
- 10 mx.metager.de
Email authentication strong
- SPF
-
v=spf1 a:smtp1.metager.de a:smtp2.metager.de a:smtp3.metager.de ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=reject; adkim=s; aspf=s; ruf=mailto:dmarc@metager.depolicy: reject (enforced) - DKIM
-
- dkim:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlhnK+MMFrZtQqRaXG9Papyhs8s/1VEwqF38/3nZjDUUlXNs2Sw5viozLp9l4W30gPaJmMzNVpEpJ6O…
selectors probed - dkim:
Certificate (current)
R13
Expires in 74 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- missing Referrer Policy
Header values
- x-frame-options
sameorigin- permissions-policy
interest-cohort=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline'; script-src-attr 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; style-src-elem 'self' 'unsafe-inline'; style-src-attr 'self' 'unsafe-inline'; img-src 'self' metager.de data:; font-src 'self' data:; connect-src 'self'; frame-src 'self'; frame-ancestors 'self'; form-action 'self' www.paypal.com www.sandbox.paypal.com- strict-transport-security
max-age=31536000