indexo.dev

ur.edu.pl

.pl crawl

First seen 2026-05-20 · Last seen 2026-05-31 · ok HTTP/1.1 200 3900 ms crawled 2026-05-27

US · 104.26.12.128 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
University of Rzeszów
Language
en
Translations
  • en

Technology

CDN
Cloudflare
Analytics
  • Cloudflare Insights
Cookie consent
  • Cookiebot

Third-party hosts loaded (2)

  • consent.cookiebot.com×1
  • static.cloudflareinsights.com×1

Social

Contact

Phone

DNS records live

NS
  • bonnie.ns.cloudflare.com
  • duke.ns.cloudflare.com
MX
  • 0 ur-edu-pl.mail.protection.outlook.com
TXT
Show 5 TXT records
  • have-i-been-pwned-verification=6f61389b282d1e3982acb7b35d1d6f89
  • have-i-been-pwned-verification=88af185e7189f21a753f633e381bf920
  • have-i-been-pwned-verification=b7a346393fbf1749b4eceea3cd3d8e20
  • have-i-been-pwned-verification=dc366555ec9077bd7a7cd327810d7dbe
  • mojecertpl-site-verification-g9vARFMEh87r0n2HqXB6lQ4LpIiaX2Gi
Verified for
  • Google
  • HARICA
  • Microsoft 365

Email authentication strong

SPF
v=spf1 mx a:sm1.ur.edu.pl a:toti.ur.edu.pl a:atena.ur.edu.pl include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; sp=none; rua=mailto:mail-repo@ur.edu.pl; ruf=mailto:mail-repo@ur.edu.pl;
policy: quarantine · sp=none
DKIM
  • default: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDXRSkPbvfnNwJMEqQ8aKLSdQf1m++6UG4MalNT+ypPnh5qcByXplcJLPvu5esyMmCoRqRPHzc/bv7VhTLo3…
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkbQOaHHWaSiNYReUufBrL9/NAaqcr5gzWZsYClwxwZCgfxcQ3OJZET+9baXmZ2dUEnqP9XqO0VMo1G…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuSCRWK74nl4ovi4MW6SxOQ9NfvwJVCm7L5ZxhQfQZOUqbF5OD+A3n37JSW/P8qk/mIiUA0UdnX/wJC…
selectors probed

Certificate (current)

E7
from 2026-05-20 to 2026-08-18
Expires in 79 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.ur.edu.pl/en/home

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
Header values
referrer-policy
no-referrer-when-downgrade, strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN, SAMEORIGIN
permissions-policy
interest-cohort=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com https://fonts.googleapis.com; frame-src 'self' https://td.doubleclick.net https://www.youtube.com https://player.vimeo.com/video *.google.com https://consentcdn.cookiebot.com; img-src 'self' https://www.google.pl https://www.google.com https://*.google-analytics.com https://www.facebook.com https://px.ads.linkedin.com https://*.googletagmanager.com https://wa-rekrutacja.ur.edu.pl https://consentcdn.cookiebot.com https://imgsct.cookiebot.com data:; script-src 'self' 'unsafe-inline' https://googleads.g.doubleclick.net https://a.omappapi.com https://snap.licdn.com https://connect.facebook.net https://www.google-analytics.com https://*.ur.edu.pl 'unsafe-eval' https://*.googletagmanager.com https://consent.cookiebot.com https://consentcdn.cookiebot.com; style-src 'self' 'unsafe-inline' https://a.omappapi.com https://fonts.googleapis.com wa-rekrutacja.ur.edu.pl; connect-src 'self' https://googleads.g.doubl
strict-transport-security
max-age=31536000, max-age=31536000; includeSubDomains

Links to (10)

Linked from (10)