weltvonhaas.at

.at crawl

First seen 2026-05-30 · Last seen 2026-05-31 · ok HTTP/1.1 200 650 ms crawled 2026-05-31

DE · 78.46.133.99 · AS24940 Hetzner Online GmbH

Reputation 100/100

Classifying

HTML metadata

Title: Ed. Haas Austria GmbH
Description: Ed. Haas Austria GmbH ist ein über 100 Jahre altes Unternehmen in Österreich. Als Produzent und starker Vertriebspartner dient es Kunden und dem Handel.
Language: de-DE
Generator: TYPO3 CMS
Canonical: https://www.weltvonhaas.at/

Open Graph

title: Ed. Haas Austria GmbH
site name: Ed. Haas Austria GmbH
description: Ed. Haas Austria GmbH ist ein über 100 Jahre altes Unternehmen in Österreich. Als Produzent und starker Vertriebspartner dient es Kunden und dem Handel.

Technology

Server: Apache
CMS: Joomla

Fonts

Adobe Fonts

Third-party hosts loaded (1)

use.typekit.net×2

Social

Contact

Email

Phone

004373238820

DNS records live

NS

ns1.first-ns.de
robotns2.second-ns.de
robotns3.second-ns.com

MX

10 mail.weltvonhaas.at

Email authentication strong

SPF

v=spf1 a:spf.xortex.com a mx -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:dmarc-reports@edhaas.at; ruf=mailto:dmarc-reports@edhaas.at; fo=0:1:d:s;

policy: reject (enforced)

DKIM

s1: v=DKIM1;t=s;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCxGeVGPBpwDJl3K1tcJC8eTF6cEPckTFzPIdZrlI7P7fQY3c881g0F9hD+GVA0XAc3kfN5J+Qx+mgRxOvDVhjIG…

selectors probed

Certificate (current)

Encryption Everywhere DV TLS CA - G2

from 2026-03-04 to 2026-09-19

Expires in 110 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.weltvonhaas.at/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), camera=(), midi=(), geolocation=(self), gyroscope=(), magnetometer=(), microphone=(), midi=(), usb=()
x-content-type-options: nosniff
content-security-policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' *.googletagmanager.com *.facebook.net *.pinimg.com *.pinterest.com *.google-analytics.com *.google.com *.gstatic.com *.addtoany.com *.tiktok.com;
strict-transport-security: max-age=63072000; includeSubDomains; preload

Links to (2)

instagram.com×1
facebook.com×1

Linked from (1)

annagold.at×1