travelcircus.ch
travelcircus.ch
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- Next.js
- Analytics
-
- Google Analytics
- Google Tag Manager
Third-party hosts loaded (10)
- s3.travel-cdn.net×86
- static-prod.travel-cdn.net×41
- www.googletagmanager.com×3
- m.tcsrv.net×2
- www.google-analytics.com×2
- script.travelcircus.de×1
- www.travelcircus.at×1
- www.travelcircus.be×1
- www.travelcircus.de×1
- www.travelcircus.nl×1
Social
DNS records live
- NS
-
- gwen.ns.cloudflare.com
- owen.ns.cloudflare.com
- MX
-
- 1 aspmx.l.google.com
- 10 alt3.aspmx.l.google.com
- 10 alt4.aspmx.l.google.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
Show 4 TXT records
google-site-verification=-YiU9r2KW4o6jtVhUk-gPd7ttkz58BPyUE2vWEmpVx8google-site-verification=9Y68r9AenmC9eadUv-jn7LBxyF_GzBJzWRNxOfWCqYIgoogle-site-verification=S28DtMP7QfQ6gRaWg-nKFlMikyCl9EWvO5J6zxuUv3sgoogle-site-verification=z-TW8rt5txtuuWZtrNm4vSzXWPsnfxxUBdKBH5wai1I
Email authentication weak
- SPF
-
v=spf1 include:_spf.google.com -allstrict (-all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
WE1
Expires in 50 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self' https://www.dein-dlrp.de https://www.lidl-reisen.de https://*.stage-entertainment.de- strict-transport-security
max-age=63072000; preload, max-age=63072000; preload, max-age=63072000; preload