Infrastructure
· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.DCDN & DeliveryActionNo CDN detectedFIX
Consider using a CDN to improve global delivery speed and reduce origin load.
BRedirect Chain2 redirect(s), 204 ms totalREVIEW
https://derstandard.at
144 ms · HTTP/1.1
https://www.derstandard.at/
45 ms · HTTP/1.1
https://www.derstandard.at/consent/tcf/
15 ms · HTTP/1.1 FINAL
| # | URL | Status | Time | Protocol | Server |
|---|---|---|---|---|---|
| 1 | https://derstandard.at | 301 | 144 ms | HTTP/1.1 | LoadbalancerMMXX |
| 2 | https://www.derstandard.at/ | 302 | 45 ms | HTTP/1.1 | AkamaiGHost |
| 3 | https://www.derstandard.at/consent/tcf/ | 200 | 15 ms | HTTP/1.1 | nginx |
See the visual redirect chain in the HTTP Probe tab →
Each redirect adds latency. Try to minimize the chain to 1 hop.
Redirect chain — each hop adds latency; combine into one redirect where possible.
Source: Google Search Central / web.dev
If permanent, use 301 instead.
302 (Found) is for genuinely temporary redirects — if this redirect is permanent, switch to 301 to preserve SEO equity.
Learn more ▾ ▴
Search engines treat 302 as temporary, keeping the original URL indexed and not transferring full link equity to the destination. Use 301 (Moved Permanently) for permanent redirects (HTTP→HTTPS, www-vs-non-www, URL restructures).
Source: Google Search Central
CIPv6 ReadinessActionNo IPv6 supportREVIEW
IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.
No AAAA records — same impact as 'no IPv6 (AAAA) records'; IPv6-preferring clients pay extra latency falling back to IPv4.
Source: Google IPv6 stats
BTLS Certificate Expiry & Recommendations314 days until leaf cert expires — 4 issues to addressREVIEW
Certificate validity
Recommended actions
- Prefer TLS 1.3 — TLS 1.2 is acceptable but TLS 1.3 removes RSA key exchange and improves latency
- Enable HSTS: Strict-Transport-Security: max-age=31536000; includeSubDomains
- Enable DNSSEC on your domain for DNS spoofing protection
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
A+DNS Records1 A records, 183 ms lookupPASS
| A | 194.116.243.40 |
| AAAA | — |
| CNAME | — |
| NS | ns.mail.at, sec1.rcode0.net, sec2.rcode0.net, balancer1.derstandard.at |
| MX | 0 derstandard-at.mail.protection.outlook.com |
| TXT | anthropic-domain-verification-bt1fwj=t14ENGDlUL8QCuBELCvRD0M2g MS=ms47139657 _dsnvnz8y7zjffjpoe7rpjqp8hk2n5i2 adobe-idp-site-verification=95754749636675a21e252ba5473acb7579df7f766b2a18ad0162... n1ukfh61knh8v9iemfi3msci9o ra2jkotslrt599p7tlc7reu55a apple-domain-verification=ilXaxDxHZsG8vMdZ google-site-verification=CUTFvpQOKxH-wVJFImIpj5WJoQKJCPsv0ZdxQ6G80Ok google-gws-recovery-domain-verification=38576565 o6eros8k88k00i4hacqtphplph 8j70uh0alffcqo4ulhefqn4cu9 3pdAynlPoFTwwe8s998I/fnKmP0SbUzz+4OtAdpkHiUDJw4o2vuVvf4AnV5WSu/gBjGi+Wm2VtL3xCqG... sophos-domain-verification=cd89786b74bca992610b7763c16c27a056cfe3ad76da5cc443d26... SPF v=spf1 ip4:194.116.242.0/23 ip4:193.154.214.0/24 ip4:193.228.122.163 ip4:54.77.1... extensis-domain-verification=059c0e13-ec6a-4618-88c5-15eaa7800b02 google-site-verification=3RcJbxU0JMk9FMSCk8-qEeEX7pi6BRuJQfrW6DZKecs asv=5c83174f60a55f42ed4f4ec797367efd atlassian-domain-verification=6u2jZzBuzIVC0Cfhoq9YqnRo8PZmlw/dVDI3b6ip/rxO3D7A38... facebook-domain-verification=5ag8hyc6wqzfwxqg41p72uesc5mvxj _globalsign-domain-verification=R2fidElKRz9PyZrETeA608Kwr__kYKcDBYrJXSlyCM |
| CAA | Lookup not available with standard resolver |
Multiple A records provide failover if one server goes down.
Single A record means a single point of failure — if that IP goes down, your site is unreachable until DNS TTL expires.
Learn more ▾ ▴
Add multiple A records for round-robin failover, or use a managed DNS provider with health-checked failover (Route 53, Cloudflare, NS1). Short TTL (60-300s) lets clients recover faster on outages.
Source: SRE practice / DNS architecture
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.
A+Crawlabilityrobots.txt present, sitemap with 277 URLsPASS
User-agent: Applebot-Extended
Disallow: /
User-agent: anthropic-ai
Disallow: /
User-agent: CCBot
Disallow: /
User-agent: ChatGPT-User
Disallow: /
User-agent: ClaudeBot
Disallow: /
User-agent: Claude-Web
Disallow: /
User-agent: FacebookBot
Disallow: /
User-agent: Google-Extended
Disallow: /
User-agent: GPTBot
Disallow: /
User-agent: ia_archiver
Disallow: /
User-agent: OAI-SearchBot
Disallow: /
User-agent: omgili
Disallow: /
User-agent: omgilibot
Disallow: /
User-Agent: PerplexityBot
Disallow: /
User-Agent: PerplexityUser
Disallow: /
Sitemap: https://www.derstandard.at/sitemaps/news.xml
Sitemap: https://www.derstandard.at/sitemaps/sitemap.xml
Crawl-delay: 1
- https://www.derstandard.at/story/3000000316419/standardraetsel-i-11272
- https://www.derstandard.at/story/3000000317600/us-praesident-trump-verlaengert-waffenruhe-mit-dem-iran
- https://www.derstandard.at/story/3000000317599/fu223ball-ried-nach-21-gegen-gak-wieder-qualigruppen-tabellenf252hrer
- https://www.derstandard.at/story/3000000317598/florida-ermittelt-gegen-openai-nach-waffen-attacke-an-uni
- https://www.derstandard.at/story/3000000317597/britisches-tabakverbot-nimmt-letzte-h252rde-im-parlament
A+URL Variantswww/non-www, trailing slash, HTTP→HTTPSPASS
www / non-www
Preferred variant: non-www
HTTP → HTTPS
Consistent
A+Domain Intelligencederstandard.at — hosted on DERSTANDARD-AS, ATPASS
Unknown
314 days
Issued by GoDaddy.com, Inc.
Unknown
Status unknown
Protects against DNS spoofing
DERSTANDARD-AS, AT
ASN AS44865
194.116.243.40
Registrar unknown