tsjahn.de

HTML metadata

Technology

Server

Apache

CMS

Joomla

Fonts

• Font Awesome

Third-party hosts loaded (3)

• tsjahn.kurabu.com×1
• use.fontawesome.com×1
• www.google.com×1

Social

• instagram

Registration

Updated

2018-05-29

Name servers

• ns1023.ui-dns.biz.
• ns1039.ui-dns.org.
• ns1052.ui-dns.de.
• ns1092.ui-dns.com.

DNS records live

NS

• ns1023.ui-dns.biz
• ns1039.ui-dns.org
• ns1052.ui-dns.de
• ns1092.ui-dns.com

MX

• 1 aspmx.l.google.com
• 10 alt3.aspmx.l.google.com
• 10 alt4.aspmx.l.google.com
• 5 alt1.aspmx.l.google.com

TXT

• google-site-verification=aMunibqLrfVgB32kqAjOJVKlbKNU0I6QkyvN_TkSbEk
• google-site-verification=NBZgbl_LeHCVR934ELLegDFjgM1Dnv8ryl1liyHnoX8

Email authentication strong

SPF

v=spf1 include:_spf.google.com ~all

softfail (~all)

DMARC

v=DMARC1;p=quarantine;pct=50;rua=mailto:easy494031@easydmarc.com,mailto:dmarc-rua@tsjahn.de;fo=1

policy: quarantine · pct=50

DKIM

• google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhegJJ/zKINr80XQFT1M4Vqf9drtkV6VjbDC495rZZIHWhYXJjIDCk2Xh2NloTfIbY1UtbUz/Z9Uhny…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://tsjahn.de/

present

• content-security-policy
• x-frame-options
• referrer-policy
• cross-origin-opener-policy

findings

• missing HSTS
• CSP allows unsafe inline scripts/styles
• missing content type protection
• missing Permissions Policy

Links to (8)

• colorcrew.de×1
• ebusy.de×1
• instagram.com×1
• kurabu.com×1
• petanque-bayern.de×1
• slc-management.com×1
• tsjb.de×1
• wordpress.com×1

Linked from (2)

• tsjb.de×1
• ts-jahn-basketball.de×1