indexo.dev

velkd.de

.de crawl

First seen 2026-05-10 · Last seen 2026-05-16 · ok HTTP/1.1 200 2320 ms crawled 2026-05-16

DE · 62.113.228.176 · AS47447 23M GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Vereinigte Evangelisch-Lutherische Kirche Deutschlands - VELKD
Language
de
Generator
TYPO3 CMS
Canonical
https://www.velkd.de/

Technology

Server
Apache

Third-party hosts loaded (2)

  • consent.cookiebot.eu×1
  • mensch.ekd.de×1

Social

Contact

Email
Phone
Address
Herrenhäuser Str. 1230419Hannover

Registration

Updated
2022-10-04
Name servers
  • ns47.domaincontrol.com.
  • ns48.domaincontrol.com.

DNS records live

NS
  • ns47.domaincontrol.com
  • ns48.domaincontrol.com
MX
  • 10 ekd-de.mail.cloud.nospamproxy.com
TXT
Show 4 TXT records
  • icc4p9c8ap10cfcmarotg62dtc
  • 20190329103659598ca9wyircfmcxeqxsm437x4k20xg8d9z6no2r5ctrporbsxg
  • IKVZSaHhWpx1/spKa+loa9p8xC8KGrb7AcZXNbe5NA8=
  • 116499_2e4ed200d680bd48aff0fb40fe7c33b4._domainkey.velkd.de" 116499_2e4ed200d680bd48aff0fb40fe7c33b4._domainkey.velkd.de. IN TXT "k=rsa; t=y;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQD3ciMNsCWe4f1TfuEgAhnX4j14+nbvS6cAVghimYJHzbWDBO/H1ysYS+DRsMzYiBOcyH2gaEO4lHzarXukJmpBHDRqh9ID77PfyuWc2B7fJbUvXWGBmpRTNW7yq8LS/UGPreOC9Xqt3VGxy2h9LYKZ/+OOPpmzvcALvl+JN8QlwQIDAQAB
Verified for
  • Adobe
  • Google
  • Microsoft 365

Email authentication partial

SPF
v=spf1 a mx a:mail1.cms.ekd.dus.intentive.de a:wp13329552.server-he.de include:spf.ekd-de.cloud.nospamproxy.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; sp=none; rua=mailto:dmarc@velkd.de; fo=1
policy: none (monitoring only) · sp=none
DKIM
no key found at common selectors

Certificate (current)

E8
from 2026-03-25 to 2026-06-23
Expires in 34 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.velkd.de/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • weak content type protection
Header values
referrer-policy
strict-origin
permissions-policy
interest-cohort=()
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://consent.cookiebot.eu https://consentcdn.cookiebot.eu https://datawrapper.dwcdn.net https://openlayers.org https://s3-eu-west-1.amazonaws.com nextgen.kajomigenerator.de *.ekd.de https://*.etracker.com https://*.etracker.de data: https://*.openstreetmap.org https://cdn.jsdelivr.net https://*.friendlycaptcha.eu https://*.friendlycaptcha.com 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com https://*.usercentrics.eu https://io.ekd.de https://openlayers.org https://i.ytimg.com https://*.tile.openstreetmap.de https://*.etracker.com https://*.etracker.de https://*.openstreetmap.org https://s3-eu-west-1.amazonaws.com; base-uri 'self'; frame-src 'self' *.youtube-nocookie.com *.youtube.com *.vimeo.com https://consentcdn.cookiebot.eu newsletter.ekd.de https://www.podcaster.de https://www.kirchenjahr-evangelisch.de https://*.friendlycaptcha.eu https://*.friendl
strict-transport-security
max-age=31536000
cross-origin-opener-policy
same-origin; Cross-Origin-Embedder-Policy: require-corp

Links to (4)

Linked from (4)