indexo.dev

velburg.de

.de crawl

First seen 2026-04-15 · Last seen 2026-05-11 · ok HTTP/1.1 200 2045 ms crawled 2026-05-09

DE · 78.46.6.155 · AS24940 Hetzner Online GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Stadt Velburg
Description
Liebe Mitbürgerinnen & Mitbürger, liebe Gäste & Interessierte, herzlich willkommen auf der Website der Stadt Velburg.
Language
de
Generator
TYPO3 CMS
Canonical
https://www.velburg.de/startseite

Open Graph

locale
de_DE
site name
Stadt Velburg
description
Herzlich Willkommen in der Stadt Velburg

Technology

Server
Apache
CMS
Joomla

Social

Contact

Phone
Address
Stadt VelburgHinterer Markt 192355 Velburg

Registration

Updated
2016-09-01
Name servers
  • ns2.bisping.de.
  • ns3.bisping.de.
  • ns.bisping.de.

DNS records live

NS
  • ns.bisping.de
  • ns2.bisping.de
  • ns3.bisping.de
MX
  • 0 velburg-de.mail.protection.outlook.com
TXT
  • apple-domain-verification=i03E0FZeUqemfFTc
  • MS=ms52302518

Email authentication weak

SPF
v=spf1 a:mail.velburg.de ip4:87.138.146.227 include:spf.protection.outlook.com -all
strict (-all)
DMARC
not published
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7VZNPQw4yGqPDuLEP/rQwW+wZZMsFLWoDddhcqrvTh72vJOQPsO5bvGdP0yNozGBPNXhYHviTwrDN…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvNlHSFO4+gb0nYEPPjh8DBL7S0cSswzwQdLKUoSju4DyFtiWT8GdP/KlPJJhSrUjpcG9cPMPZyS/wt…
selectors probed

Certificate (current)

Encryption Everywhere DV TLS CA - G2
from 2025-07-01 to 2026-07-01
Expires in 42 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.velburg.de/startseite

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade, strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'none'; script-src 'self'; script-src-elem 'self' *.destination.one https://www.vgn.de/; script-src-attr 'self'; style-src * 'self' 'unsafe-inline' https:; style-src-elem * 'self' 'unsafe-inline'; style-src-attr * 'self' 'unsafe-inline'; img-src 'self' https://www.vgn.de/ data:; font-src 'self' https://www.vgn.de/ data:; connect-src https://www.vgn.de/ 'self'; media-src 'self'; child-src 'self' youtube.com; frame-src 'self' https://www.youtube-nocookie.com https://pages.et4.de/ https://pages.destination.one; worker-src 'self'; frame-ancestors 'self'; form-action https://www.vgn.de/ *.destination.one 'self'; upgrade-insecure-requests; block-all-mixed-content; base-uri 'self'; manifest-src 'self'
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (12)

Linked from (5)