uilpiemonte.it

.it crawl

First seen 2026-06-01 · Last seen 2026-06-03 · ok HTTP/1.1 200 237 ms crawled 2026-06-01

DE · 49.12.14.134 · AS24940 Hetzner Online GmbH

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title: UIL Piemonte
Language: it
Canonical: https://uilpiemonte.it/

Open Graph

url: https://uilpiemonte.it/
title: UIL Piemonte
locale: it_IT

Technology

Server: Apache
Stack: PHP

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (3)

fonts.googleapis.com×2
fonts.gstatic.com×1
www.googletagmanager.com×1

Social

Contact

Email

uilpiemonte@uilpiemonte.it

Phone

+39 011 24 17 100

DNS records live

NS

dns1.drminformatica.it
dns2.drminformatica.it
dns3.drminformatica.it
dns4.drminformatica.it
dns5.drminformatica.it

MX

1 mail.drmposta.it

Email authentication strong

SPF

v=spf1 mx include:spf.drmposta.it include:_spf1.mdchannels.it -all

strict (-all)

DMARC

v=DMARC1; p=reject

policy: reject (enforced)

DKIM

default: v=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDfd7QUiI8mUgu4yjduOF2Vrf70NFed3/Eh98Gyr1QPZN1sVEj8Bq4TQPrMl/z59Bj0MxSfjAEZ4OGfHZEbx8fzxmlpK…

selectors probed

Certificate (current)

R12

from 2026-05-26 to 2026-08-24

Expires in 80 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://uilpiemonte.it/

present

content-security-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: default-src 'self' https://cdnjs.cloudflare.com https://youtube.com https://*.youtube.com https://*.google-analytics.com https://*.google.com; frame-src https://*.google.com https://www.youtube-nocookie.com https://*.youtube.com; img-src 'self' data: https://*.google-analytics.com https://maps.gstatic.com https://*.googleapis.com https://*.ggpht.com https://*.youtube.com; media-src 'self'; script-src 'self' 'nonce-r4AJpkI9lRXgc9XvCsoWAj0ow7RQMjPW' https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://www.google.com https://maps.googleapis.com; style-src 'self' 'unsafe-inline' https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://fonts.googleapis.com https://fonts.gstatic.com; font-src 'self' https://cdnjs.cloudflare.com https://fonts.gstatic.com; object-src 'none'; base-uri 'self'; frame-ancestors 'none'; worker-src blob:;

Links to (2)

x.com×1
facebook.com×1