venicesymposium.it

.it crawl

First seen 2026-05-12 · Last seen 2026-05-19 · ok HTTP/1.1 200 1382 ms crawled 2026-05-18

FR · 178.32.209.106 · AS16276 OVH SAS

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: VENICE 2026: 23-25 NOVEMBER 2026. SAVE THE DATE! | VENICE SYMPOSIUM 2026

Technology

Server: Microsoft-IIS

Third-party hosts loaded (4)

cdnjs.cloudflare.com×5
cdn.crosspublisher.it×2
code.jquery.com×1
s7.addthis.com×1

Social

Contact

Email

info@eurowaste.it

Phone

DNS records live

NS

dnsl1.gidinet.com
dnsl2.gidinet.com

MX

10 alt1.aspmx.l.google.com
10 alt2.aspmx.l.google.com
20 aspmx2.googlemail.com
20 aspmx3.googlemail.com
5 aspmx.l.google.com

Email authentication weak

SPF: v=spf1 include:musvc.com include:amazonses.com include:_spf.google.com a:sympo.eurowaste.it ~all
softfail (~all)
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2026-03-20 to 2026-10-05

Expires in 137 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.venicesymposium.it/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' https://* 'unsafe-inline'; script-src 'self' https://* 'unsafe-inline' 'unsafe-eval'; font-src 'self' https://* data: ; img-src 'self' https://* data:; frame-ancestors http:;
strict-transport-security: max-age=31536000; includeSubDomains

Links to (8)

Linked from (4)