indexo.dev

thonet.de

.de crawl

First seen 2026-04-14 · Last seen 2026-05-08 · ok HTTP/1.1 200 1229 ms crawled 2026-05-08

DE · 185.57.240.151 · AS201955 iquer.net GmbH & Co KG

Reputation 94/100 dmarc monitor-only

sector home type homepage

HTML metadata

Title
Thonet | Mehr als ein Möbelstück
Description
Thonet ist einer der ältesten Möbelhersteller weltweit und produziert seit 1819 Möbel in höchster Design- und Produktqualität.
Language
de
Generator
TYPO3 CMS
Canonical
https://www.thonet.de/de/
Translations
  • de-de
  • en-us

Technology

Server
nginx
CMS
Gatsby

Third-party hosts loaded (1)

  • consent.cookiefirst.com×1

Social

Registration

Updated
2018-08-19
Name servers
  • ns1035.ui-dns.biz.
  • ns1035.ui-dns.com.
  • ns1035.ui-dns.de.
  • ns1035.ui-dns.org.

DNS records live

NS
  • ns1035.ui-dns.biz
  • ns1035.ui-dns.com
  • ns1035.ui-dns.de
  • ns1035.ui-dns.org
MX
  • 0 thonet-de.mail.protection.outlook.com
TXT
Show 5 TXT records
  • MS=ms63080439
  • google-site-verification=jpjvyBw3pDoN2h9YciYwFX0ITCqnilyLfPjtTjYCCX4
  • 00DWz000004cLXN=1TBSc0000001Cgg
  • MS=60DD671152D7DCF29F7ED66C8CD9034ABF331093
  • apple-domain-verification=Ye28SvwJvmKkb885

Email authentication partial

SPF
v=spf1 a:mail.thonet.de include:_spf.iquer.net include:spf.protection.outlook.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:it@thonet.de; ruf=mailto:it@thonet.de; fo=1
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfiiMlu1bTMa6PHwTpvakQ6hLnixdgGk/hzkTuXJ8iep/VcvfeQKMaKCzW6+CVl2bmLphWBEBxq0tA…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-06-05 to 2026-07-07
Expires in 48 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://www.thonet.de/de

present
  • content-security-policy
  • x-content-type-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
default-src 'self' fonts.googleapis.com fonts.gstatic.com maps.googleapis.com maps.gstatic.com; font-src 'self' data: fonts.gstatic.com; form-action 'self' *.sofort.com test.vr-pay-ecommerce.de vr-pay-ecommerce.de oppwa.com; frame-ancestors 'self'; img-src 'self' data: consent.cookiefirst.com static.cookiefirst.com *.ads.linkedin.com googleads.g.doubleclick.net www.linkedin.com www.facebook.com ct.pinterest.com oppwa.com test.vr-pay-ecommerce.de vr-pay-ecommerce.de widgets.trustedshops.com *.cdninstagram.com www.google.de www.google.com stats.g.doubleclick.net *.google-analytics.com maps.gstatic.com maps.googleapis.com c-live3a.pcon.eu; object-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: consent.cookiefirst.com www.google.com www.google.de googleads.g.doubleclick.net www.googleadservices.com connect.facebook.net snap.licdn.com s.pinimg.com oppwa.com test.vr-pay-ecommerce.de vr-pay-ecommerce.de test.oppwa.com oppwa.com *.google-analytics.com www.googletagmanager.co

Links to (5)

Linked from (1)