taunussparkasse.de
HTML metadata
Technology
Third-party hosts loaded (1)
- www.sparkasse.de×1
Social
Contact
- Phone
Registration
- Updated
- 2025-02-13
- Name servers
-
- ns1.s-fg-net.de.
- ns2.s-fg-net.com.
- ns3.s-fg-net.eu.
- ns4.s-fg-net.de.
- ns5.s-fg-net.com.
DNS records live
- NS
-
- ns1.s-fg-net.de
- ns2.s-fg-net.com
- ns3.s-fg-net.eu
- ns4.s-fg-net.de
- ns5.s-fg-net.com
- MX
-
- 10 y01es.mail.s-web.de
- 10 y02es.mail.s-web.de
- TXT
-
Show 6 TXT records
cisco-ci-domain-verification=7fc33485dd238474b22e22e0a080d7858693502e58182ad1ccd835be009a72adxzxrsnn8yz9slqcbqpp9czvy7ydptyw6_9hvxw9agbdeht9bynwr5r2kctf6ckou_x8iwnss9fx4h2gxxif12wfm2da1tfv0_4xrmkskc41qe7rpknfen4cfve72mxsu_kpghr4t7hng8btj96jg2fincy58q9wa
Email authentication weak
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
DigiCert G2 TLS EU RSA4096 SHA384 2022 CA1
Expires in 42 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
DENY- x-content-type-options
nosniff- content-security-policy
script-src 'self' blob: https://morris-server.de:8801 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; img-src 'self' data: blob: https:; font-src 'self' data:; media-src 'self' data: blob: https://api.sparkassen-mediacenter.de https://sparkassen-mediacenter.de https://cdn.sparkassen-mediacenter.de- strict-transport-security
max-age=31536000
Links to (6)
- facebook.com×2
- instagram.com×2
- linkedin.com×2
- xing.com×2
- youtube.com×2
- deka.de×1