indexo.dev

tourismus-fulda.de

.de crawl

First seen 2026-04-12 · Last seen 2026-05-20 · ok HTTP/1.1 200 3277 ms crawled 2026-05-20

DE · 49.12.116.83 · AS24940 Hetzner Online GmbH

Reputation 100/100

sector travel type homepage

HTML metadata

Title
Tourismus Fulda
Language
de
Generator
TYPO3 CMS
Canonical
https://www.tourismus-fulda.de/
Translations
  • de
  • en
  • es
  • fr
  • it
  • nl

Technology

Server
nginx
Analytics
  • Google Tag Manager
Cookie consent
  • Cookiebot

Third-party hosts loaded (2)

  • www.googletagmanager.com×2
  • consent.cookiebot.com×1

Social

Contact

Phone

Registration

Updated
2021-01-21
Name servers
  • dns10.nethinks.com.
  • dns9.nethinks.com.

DNS records live

NS
  • dns10.nethinks.com
  • dns9.nethinks.com
MX
  • 0 tourismus-fulda.de

Email authentication strong

SPF
v=spf1 a mx -all
strict (-all)
DMARC
v=DMARC1; p=reject
policy: reject (enforced)
DKIM
  • default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3NiSiaZxEdYU7dVGJQ/Jz2QXcLoBM+VuIFpSd9TZBnwAyedzLqtcqMg0PwqYmQp3gNmEky8HNCaGs4…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-08-21 to 2026-09-22
Expires in 124 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.tourismus-fulda.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(), midi=(), camera=(), usb=(), magnetometer=(), accelerometer=(), vr=(), speaker=(), ambient-light-sensor=(), gyroscope=(), microphone=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' data: tourismus-fulda.de *.tourismus-fulda.de *.cookiebot.com *.facebook.com *.google.com *.google.de *.googletagmanager.com *.google-analytics.com *.googlesyndication.com *.g.doubleclick.net blob: *.deskline.net *.feratel.com *.datatrans.com *.trustyou.com *.destination.one *.chatbase.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' data: tourismus-fulda.de *.tourismus-fulda.de *.facebook.net *.doubleclick.net *.datatrans.com *.trustyou.com *.destination.one *.cookiebot.com *.googletagmanager.com *.google-analytics.com *.deskline.net *.feratel.com *.chatbase.co blob:; style-src 'self' 'unsafe-inline' tourismus-fulda.de *.tourismus-fulda.de *.deskline.net *.feratel.com *.datatrans.com *.trustyou.com *.destination.one; frame-src mailto: *.google.com *.youtube-nocookie.com *.doubleclick.net *.googletagmanager.com *.cookiebot.com *.datatrans.com *.destination.one *.et4.de *.chatbase.co
strict-transport-security
max-age=31536000;, max-age=15768000; includeSubDomains

Links to (11)

Linked from (7)