indexo.dev

tl-ultralight.cz

.cz crawl

First seen 2026-06-01 · Last seen 2026-06-02 · ok HTTP/1.1 200 320 ms crawled 2026-06-02

FR · 89.117.52.238 · AS51167 Contabo GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
TL-ULTRALIGHT Aircraft
Description
Společnost TL-Ultralight je jedním z nejvýznamnějších producentů ultralehkých letadel v ČR a ve světě. Vlastní výroba a vývoj letadel, moderní technologie i ruční práce. Designově i funkčně vyladěné letouny.
Language
cs

Open Graph

url
https://www.tl-ultralight.cz/cs
title
Úvodní stránka
site name
TL-ULTRALIGHT Aircraft

Technology

Server
xxxxxx
Analytics
  • Google Tag Manager
Social widgets
  • YouTube Embed

Third-party hosts loaded (3)

  • www.googletagmanager.com×2
  • maps.google.com×1
  • www.youtube.com×1

Social

Registration

Registrar
REG-ACTIVE24
Created
1998-09-23
Expires
2026-10-27 145 days left
Updated
2025-11-10
Name servers
  • ns1.websupport.cz
  • ns2.websupport.cz
  • ns3.websupport.eu

DNS records live

NS
  • ns1.websupport.cz
  • ns2.websupport.cz
  • ns3.websupport.eu
MX
  • 10 mail.tl-ultralight.cz

Email authentication partial

SPF
v=spf1 ip4:88.146.182.18 mx:mail.tl-ultralight.cz ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc@tl-ultralight.cz; ruf=mailto:dmarc@tl-ultralight.cz; fo=1;
policy: none (monitoring only)
DKIM
  • mail: v=DKIM1;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwRAbO7Ep4ngMgK1VpaxHAoA5RcXrcJj1VPV1+DVG9TTyeSKFgWW+Z9+/wYtysfbEa46rVcJtwmsAvVLOg0gxGp…
selectors probed

Certificate (current)

E8
from 2026-04-12 to 2026-07-11
Expires in 37 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.tl-ultralight.cz/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), camera=(), fullscreen=(self "https://www.youtube.com"), geolocation=(self), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' data:;font-src 'self' data: *.gstatic.com;connect-src 'self' *.google.com maps.googleapis.com *.google-analytics.com *.doubleclick.net *.facebook.com *.googlesyndication.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' *.google.com *.google.cz www.googletagmanager.com www.google-analytics.com *.gstatic.com *.adform.net *.seznam.cz *.doubleclick.net *.googleadservices.com animate.adobe.com;script-src-elem 'self' 'unsafe-inline' 'unsafe-eval' *.google.com *.google.cz www.googletagmanager.com www.google-analytics.com *.gstatic.com *.adform.net *.seznam.cz *.doubleclick.net *.googleadservices.com animate.adobe.com;form-action 'self' *.facebook.com *.facebook.net;frame-src 'self' blob: www.youtube.com *.google.com *.doubleclick.net www.googletagmanager.com;worker-src 'self' blob: www.youtube.com *.google.com *.doubleclick.net www.googletagmanager.com;frame-ancestors 'self';img-src 'self' data: blob: *.gstatic.com maps.googleapis.com *.googlecode.com www.googl
strict-transport-security
max-age=31536000

Links to (6)

Linked from (1)