indexo.dev

wein-konzept.de

.de crawl

First seen 2026-04-20 · Last seen 2026-05-14 · ok HTTP/1.1 200 855 ms crawled 2026-05-14

DE · 194.6.210.247 · AS47447 23M GmbH

Reputation 87/100 weak security headers no dmarc policy

Classifying

HTML metadata

Title
Wein online bestellen & entspannt genießen mit Wein-Konzept
Description
Wein online bestellen ✚ in wenigen Tagen zu Hause genießen. Schneller & zuverlässiger Weinversand ★ Trusted-Shops® SEHR GUT ➽ Jetzt testen!
Language
de

Technology

Server
Apache
CMS
Gatsby
Analytics
  • Google Tag Manager
Cookie consent
  • Usercentrics

Third-party hosts loaded (3)

  • privacy-proxy.usercentrics.eu×3
  • web.cmp.usercentrics.eu×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

Registration

Updated
2022-08-15
Name servers
  • ns81.domaincontrol.com.
  • ns82.domaincontrol.com.

DNS records live

NS
  • ns81.domaincontrol.com
  • ns82.domaincontrol.com
MX
  • 10 weinkonzept-de01b.mail.protection.outlook.com
Verified for
  • Microsoft 365

Email authentication weak

SPF
v=spf1 include:_spf.sendnode.com include:spf.protection.outlook.com include:ispgateway.de ip4:80.82.206.0/26 ip4:185.98.184.0/24 ip4:80.67.31.32/32 ip4:78.47.166.47/32 ip4:188.40.219.139/32 ip4:81.173.244.15/32 ip4:81.173.193.63/32 a:smtprelay01.ispgateway.de ip4:62.113.228.102 ip6:2a00:f48:1008::228:102:10 ip4:194.6.210.247 ip6:2a00:f48:1008::210:247:10 -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

E8
from 2026-04-29 to 2026-07-28
Expires in 69 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.wein-konzept.de/

present
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • missing Content Security Policy
  • weak frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff
content-security-policy-report-only
font-src *.fontawesome.com *.gstatic.com 'self' data: https://widgets.trustedshops.com https://integrations.etrusted.com data: 'self' 'unsafe-inline'; form-action pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com https://www.google.com/recaptcha/ js.mollie.com www.xtento.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net www.googleadservices.com www.google-analytics.com analytics.google.com www.googletagmanager.com t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com validator.swagger.io htt

Links to (3)

Linked from (1)