wittmann-shop.de
HTML metadata
Technology
- Server
- nginx
- CMS
- Gatsby
Third-party hosts loaded (2)
- chimpstatic.com×1
- cloud.ccm19.de×1
Social
Contact
- Phone
Registration
- Updated
- 2018-01-19
- Name servers
-
- docks05.rzone.de.
- shades07.rzone.de.
DNS records live
- NS
-
- docks05.rzone.de
- shades07.rzone.de
- MX
-
- 5 smtpin.rzone.de
Email authentication strong
- SPF
- not published
- DMARC
-
v=DMARC1;p=reject;policy: reject (enforced) - DKIM
- no key found at common selectors
Certificate (current)
E7
Expires in 34 days
HTTP security headers
- present
-
- content-security-policy-report-only
- x-frame-options
- x-content-type-options
- findings
-
- missing HSTS
- missing Content Security Policy
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy-report-only
font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com *.fontawesome.com *.cloudflare.com *.twitter.com *.twimg.com *.trustedshops.com *.googleapis.com *.googleapis.de *.zopim.com *.zopim.io *.unpkg.com unpkg.com trustedshops.com cloud.ccm19.de *.ccm19.de data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * *.twitter.com *.trustedshops.com *.unpkg.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geosta