indexo.dev

zlatniratbol.com

.com crawl

First seen 2026-05-22 · Last seen 2026-05-28 · ok HTTP/1.1 200 20888 ms crawled 2026-05-28

HR · 178.218.166.41 · AS12417 Plus Hosting Grupa d.o.o.

Reputation 92/100 no dmarc policy

sector travel type homepage

HTML metadata

Title
Golden Horn beach, Bol, Croatia - Official page
Description
Welcome to the official page of Golden Horn, one of the most beautiful beaches on the Adriatic coast, located in Bol, on the south coast of the island of Brač.
Language
en
Translations
  • en
  • hr

Open Graph

title
Golden Horn beach, Bol, Croatia
site name
Golden Horn beach, Bol, Croatia
description
Welcome to the official page of Golden Horn, one of the most beautiful beaches on the Adriatic coast, located in Bol, on the south coast of the island of Brač.

Technology

Server
Apache
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • fonts.googleapis.com×1
  • s7.addthis.com×1
  • www.facebook.com×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
GoDaddy.com, LLC
Created
2020-03-02
Expires
2027-03-02 272 days left
Updated
2026-03-03
Name servers
  • ns1.mojsite.com
  • ns2.mojsite.com

DNS records live

NS
  • ns1.mojsite.com
  • ns2.mojsite.com
MX
  • 0 mail.zlatniratbol.com
Verified for
  • Google

Email authentication weak

SPF
v=spf1 a mx include:mojsite.com ~all
softfail (~all)
DMARC
not published
DKIM
  • default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAphCIYPIX3hfTYMWdO3eUivjOa5+gXsHtuXYI94RbZtY1vhuCtlxc6R1vUYxXk5OTl4seSz24Y5ZF9F…
selectors probed

Certificate (current)

R13
from 2026-05-20 to 2026-08-18
Expires in 77 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.zlatniratbol.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-inline' 'unsafe-eval' https: data: http://fonts.googleapis.com http://fonts.gstatic.com http://www.google-analytics.com http://s7.addthis.com http://m.addthisedge.com http://m.addthis.com http://graph.facebook.com http://widgets.pinterest.com http://maps.google.com http://csi.gstatic.com http://maps.gstatic.com http://maps.googleapis.com http://www.linkedin.com http://api-public.addthis.com http://localhost http://player.vimeo.com/;
strict-transport-security
max-age=63072000; includeSubdomains; preload

Links to (7)

Linked from (1)