uibk.ac.at
uibk.ac.at
HTML metadata
Technology
- Server
- Apache
- CMS
- Gatsby
Social
Contact
- Phone
DNS records live
- NS
-
- ns1.uibk.ac.at
- ns2.uibk.ac.at
- ns5.univie.ac.at
- MX
-
- 10 spam-nolisting.uibk.ac.at
- 15 mx1.uibk.ac.at
- TXT
-
MS=0C63A58D5F28DB3F58B11408BFC6CEEEAAAC4CC5
- Verified for
-
- Cisco
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 include:_spf.uibk.ac.at include:_spf_etermin.uibk.ac.at include:spf.presstige.at include:_spf_xmbx.uibk.ac.at -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; sp=quarantine; aspf=r; rua=mailto:dmarc-2022-rua@uibk.ac.at; ruf=mailto:dmarc-2022@uibk.ac.at;policy: quarantine · sp=quarantine - DKIM
- no key found at common selectors
Certificate (current)
GEANT TLS ECC 1
Expires in 170 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- referrer-policy
- cross-origin-opener-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Permissions Policy
Header values
- referrer-policy
same-origin- x-content-type-options
nosniff- content-security-policy
frame-src https://*; frame-ancestors 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.uibk.ac.at; style-src 'self' 'unsafe-inline' https://*.uibk.ac.at; img-src 'self' data: https://*.uibk.ac.at; media-src 'self' blob: https://*.uibk.ac.at; font-src 'self' data: https://*.uibk.ac.at; object-src 'self'; base-uri 'self'; form-action 'self' https://*.uibk.ac.at; default-src 'self' https://*.uibk.ac.at;- strict-transport-security
max-age=31536000; includeSubDomains; preload- cross-origin-opener-policy
same-origin