triathlon-niedersachsen.de

HTML metadata

Technology

Server

Apache

CMS

Drupal

Third-party hosts loaded (1)

• privacy-seal.heydata.eu×1

Social

• facebook
• instagram
• youtube

Registration

Updated

2018-08-14

Name servers

• ns1060.ui-dns.biz.
• ns1060.ui-dns.com.
• ns1060.ui-dns.de.
• ns1060.ui-dns.org.

DNS records live

NS

• ns1060.ui-dns.biz
• ns1060.ui-dns.com
• ns1060.ui-dns.de
• ns1060.ui-dns.org

MX

• 10 mx00.ionos.de
• 10 mx01.ionos.de

Email authentication partial

SPF

v=spf1 include:_spf.perfora.net include:_spf-eu.ionos.com include:_spf.kundenserver.de ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

no key found at common selectors

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.triathlon-niedersachsen.de/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options

findings

• short HSTS max-age
• CSP allows unsafe inline scripts/styles
• missing Referrer Policy
• missing Permissions Policy

Links to (15)

• triathlondeutschland.de×2
• youtube.com×2
• cleverreach.com×2
• dtu-kalender.de×2
• facebook.com×2
• fwd-sport.de×2
• gemeinsam-gegen-doping.de×2
• heydata.eu×2
• instagram.com×2
• intro-wolfsburg.de×2
• it4sport.de×2
• lsb-niedersachsen.de×2
• run-timing.de×2
• sport-goslar.de×2
• sport-iat.de×2

Linked from (1)

• lottosportinternat.de×2