indexo.dev

zanzu.de

.de crawl

First seen 2026-04-15 · Last seen 2026-05-10 · ok HTTP/1.1 200 8602 ms crawled 2026-05-10

DE · 195.252.136.60 · AS61157 PlusServer GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Wahl der Sprache | Zanzu
Language
de
Generator
TYPO3 CMS
Canonical
https://www.zanzu.de/
Translations
  • ar-ar
  • bg-bg
  • de-de
  • en-gb
  • es-es
  • fa
  • fr-fr
  • nl-nl
  • pl-pl
  • ro-ro
  • ru-ru
  • sq-sq
  • tr-tr
  • uk-ua

Technology

Server
nginx

Registration

Updated
2025-05-08
Name servers
  • ns03.versatel.de.
  • ns1.dimdi.de.
  • ns2.dimdi.de.

DNS records live

NS
  • ns03.versatel.de
  • ns1.dimdi.de
  • ns2.dimdi.de
MX
  • 10 mx1.bund.de
  • 20 mx2.bund.de
TXT
  • HARICA-QMHygNBlRQdDaMAW6xY

Email authentication partial

SPF
v=spf1 include:_spf.bioeg.de include:_spf1.bund.de -all
strict (-all)
DMARC
v=DMARC1; p=none; sp=none; rua=mailto:bioeg.de@dmarc.reports.bund.de
policy: none (monitoring only) · sp=none
DKIM
no key found at common selectors

Certificate (current)

GEANT TLS RSA 1
from 2026-04-29 to 2026-11-14
Expires in 179 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.zanzu.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' https://piwik.bzga.de/ https://*.readspeaker.com data:; img-src 'self' data: https://piwik.bzga.de; script-src 'self' https://piwik.bzga.de https://*.readspeaker.com/; style-src 'self' 'unsafe-inline';frame-src 'self' https://eu.frcapi.com https://*.readspeaker.com/
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (2)

Linked from (2)