bafin.de Review

 N/A

HTTP/1.1 301 Moved Permanently
Date: Sat, 23 Aug 2025 15:57:05 GMT
Server: Apache
Location: https://bafin.de/
Content-Length: 225
Keep-Alive: timeout=10, max=500
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

HTTP/1.1 302 Found
Date: Sat, 23 Aug 2025 15:57:09 GMT
Server: Apache
Set-Cookie: AL_BALANCE-S=$xc/3MsQVo1HyrBI6immmTIjoZWiJzmav9PRyr_HAv3KmcxRlAnw; Path=/; Secure; HttpOnly; SameSite=None
Content-Length: 0
Vary: X-Forwarded-Proto
Last-Modified: Sat, 23 Aug 2025 15:57:09 GMT
Cache-Control: no-cache
Referrer-Policy: same-origin
X-Frame-Options: sameorigin
X-UA-Compatible: IE=edge
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src 'self'; base-uri 'self'; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.google.com *.gstatic.com *.youtube.com *.ytimg.com *.vimeo.com doo.net piwik.itzbund.de; object-src 'self' multimedia.gsb.bund.de; media-src 'self' multimedia.gsb.bund.de *.youtube.com *.vimeo.com; frame-src *.google.com *.gstatic.com *.youtube.com *.vimeo.com; img-src 'self' data: *.google.com *.gstatic.com *.youtube.com piwik.itzbund.de; connect-src 'self' *.itzbund.de *.dtvp.de; frame-ancestors 'self';
X-Content-Security-Policy: sandbox allow-scripts allow-popups allow-same-origin;
X-Permitted-Cross-Domain-Policies: none
X-WebKit-CSP: default-src 'self'; base-uri 'self'; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.google.com *.gstatic.com *.youtube.com *.ytimg.com *.vimeo.com doo.net piwik.itzbund.de; object-src 'self' multimedia.gsb.bund.de; media-src 'self' multimedia.gsb.bund.de *.youtube.com *.vimeo.com; frame-src *.google.com *.gstatic.com *.youtube.com *.vimeo.com; img-src 'self' data: *.google.com *.gstatic.com *.youtube.com piwik.itzbund.de; connect-src 'self' *.itzbund.de *.dtvp.de; frame-ancestors 'self';
Pragma: no-cache
Location: https://www.bafin.de/DE/Startseite/startseite_node.html
Content-Language: de
Strict-Transport-Security: max-age=31536000
Keep-Alive: timeout=10, max=500
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8

HTTP/1.1 200 OK
Date: Sat, 23 Aug 2025 15:57:13 GMT
Server: Apache
Set-Cookie: AL_BALANCE-S=$xc/p88FAw8xi7QjvtXvu0ThrbeclFAPYjv29eytTsFIGyYVhBQ6; Path=/; Secure; HttpOnly; SameSite=None
Content-Length: 43779
Vary: X-Forwarded-Proto,Accept-Encoding
Referrer-Policy: same-origin
X-Frame-Options: sameorigin
X-UA-Compatible: IE=edge
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src 'self'; base-uri 'self'; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.google.com *.gstatic.com *.youtube.com *.ytimg.com *.vimeo.com doo.net piwik.itzbund.de; object-src 'self' multimedia.gsb.bund.de; media-src 'self' multimedia.gsb.bund.de *.youtube.com *.vimeo.com; frame-src *.google.com *.gstatic.com *.youtube.com *.vimeo.com; img-src 'self' data: *.google.com *.gstatic.com *.youtube.com piwik.itzbund.de; connect-src 'self' *.itzbund.de *.dtvp.de; frame-ancestors 'self';
X-Content-Security-Policy: sandbox allow-scripts allow-popups allow-same-origin;
X-Permitted-Cross-Domain-Policies: none
X-WebKit-CSP: default-src 'self'; base-uri 'self'; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.google.com *.gstatic.com *.youtube.com *.ytimg.com *.vimeo.com doo.net piwik.itzbund.de; object-src 'self' multimedia.gsb.bund.de; media-src 'self' multimedia.gsb.bund.de *.youtube.com *.vimeo.com; frame-src *.google.com *.gstatic.com *.youtube.com *.vimeo.com; img-src 'self' data: *.google.com *.gstatic.com *.youtube.com piwik.itzbund.de; connect-src 'self' *.itzbund.de *.dtvp.de; frame-ancestors 'self';
Last-Modified: Fri, 22 Aug 2025 22:17:47 GMT
Expires: Fri, 22 Aug 2025 22:18:47 GMT
Cache-Control: max-age=60
Content-Language: de
Strict-Transport-Security: max-age=31536000
Keep-Alive: timeout=10, max=500
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8