indexo.dev

wgsh.de

.de crawl

First seen 2026-04-23 · Last seen 2026-05-17 · ok HTTP/1.1 200 11387 ms crawled 2026-05-17

DE · 188.40.28.16 · AS24940 Hetzner Online GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Wohnungsgenossenschaft Schiffahrt-Hafen Rostock: Wohnungsgenossenschaft Schiffahrt-Hafen, Rostock
Description
Bei uns mieten Sie Ihre neue Wohnung in Rostock. Hohe Qualität zu einem fairen Preis. Sicher wohnen bei Ihrer Wohnungsgenossenschaft Schiffahrt-Hafen Rostock eG.
Language
de-DE
Generator
TYPO3 CMS

Technology

Server
Apache

Third-party hosts loaded (1)

  • cdn.eye-able.com×2

Social

Contact

Email
Phone

Registration

Updated
2020-06-16
Name servers
  • a.ns14.net.
  • b.ns14.net.
  • c.ns14.net.
  • d.ns14.net.

DNS records live

NS
  • a.ns14.net
  • b.ns14.net
  • c.ns14.net
  • d.ns14.net
MX
  • 10 mailgate.wgsh.de
TXT
  • apple-domain-verification=jgv1rBEIKjPSsv6o
  • MS=ms35304584
  • MS=E3472E3086D755E5D4D2C0AAAB77961245EE8BF4

Email authentication partial

SPF
v=spf1 mx a ip4:90.187.59.109 ip6:2a01:4f8:d0a:1205::2 include:_spf.aareon.com include:spf.crsend.com include:spf.protection.outlook.com include:spf.datasec.de -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc-reports@wgsh.de,mailto:dmarc_agg@vali.email; ruf=mailto:dmarc-reports@wgsh.de; fo=0:1:d:s;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-05-14 to 2026-08-12
Expires in 85 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.wgsh.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak content type protection
  • missing Permissions Policy
Header values
referrer-policy
origin-when-cross-origin
x-frame-options
sameorigin
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self' 'unsafe-inline' data:; img-src 'self' *.your-server.de *.your-server.de 'unsafe-inline' data: cdn.eye-able.com 'unsafe-eval' wgsh.qbus.dev wgsh.localhost maps.gstatic.com *.googleapis.com *.ggpht *.google-analytics.com iframe-chatplugin.asw.aareon.com tile.openstreetmap.org *.tile.openstreetmap.org a.tile.openstreetmap.org b.tile.openstreetmap.org c.tile.openstreetmap.org; connect-src 'self' *.googleapis.com *.your-server.de *.googleapis.com *.your-server.de wgsh.qbus.dev wgsh.localhost 'unsafe-eval' analytics.wgsh.de *.google-analytics.com stats.g.doubleclick.net cdn.eye-able.com; style-src 'self' *.your-server.de 'unsafe-inline' wgsh.qbus.dev wgsh.localhost 'unsafe-eval' cdn.eye-able.com https://fonts.googleapis.com https://iframe-chatplugin.asw.aareon.com; script-src 'self' *.your-server.de *.your-server.de 'unsafe-inline' wgsh.qbus.dev wgsh.localhost 'unsafe-eval' cdn.eye-able.com analytics.wgsh.de maps.googleapis.com www.google-analytics.com www.googletagmanager
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (2)

Linked from (2)