3rabica.org

Post Reply
diablo6006
Posts: 3
Joined: Thu Apr 15, 2021 4:02 pm

3rabica.org

Post by diablo6006 » Thu Apr 15, 2021 4:11 pm

Site URL - https://3rabica.org
Scorecard - https://www.mywot.com/scorecard/3rabica.org
Introduction - 3rabica, the other name is Arabica, an online encyclopedia that can be edited by anyone. Arabic is the main content language.
Privacy policy- https://3rabica.org/%D8%A3%D8%B1%D8%A7%D8%A8%D9%8A%D9%83%D8%A7:%D8%B3%D9%8A%D8%A7%D8%B3%D8%A9_%D8%A7%D9%84%D8%AE%D8%B5%D9%88%D8%B5%D9%8A%D8%A9
it's in Arabic and the redirect in English, nothing special.

Contact the site owners - https://3rabica.org/%D8%A3%D8%B1%D8%A7%D8%A8%D9%8A%D9%83%D8%A7:%D8%A7%D8%AA%D8%B5%D9%84_%D8%A8%D9%86%D8%A7

Whois information - https://whois.domaintools.com/3rabica.org

Ownership verification - done.

The preferred language is Arabic

A440
Posts: 4760
Joined: Sat Nov 20, 2010 1:56 am

Re: 3rabica.org

Post by A440 » Sat Apr 17, 2021 3:28 am

Hello and welcome to WOT.

First, your site appears to be free of exploits, however my attempts to scan your site are blocked:
(503 Service Unavailable – Your web server is overloaded, down for maintenance, or down because of malware.
Please check that you can access your web server in a web browser), which means I can not fully check the site.
I note a referenced blacklisted domains/hosts: www.stats.gov.cn as well.

I'm going to hold off on rating this site for the time being.

diablo6006
Posts: 3
Joined: Thu Apr 15, 2021 4:02 pm

Re: 3rabica.org

Post by diablo6006 » Wed Apr 21, 2021 10:20 pm

Hello A440,
Thank you for your patient, my server was under DDos attack for the past 3 days. problem solved. i had to block several ports, and now the site accepts traffic on port 80 (http) and 443 (https) only. if the scan tool that you are using has a different port please let me know, so I can enable that port for some time.

The referenced url (www.stats.gov.cn) is mentioned as a reference only in 4 articles and can be removed.
Search for (www.stats.gov.cn)

Code: Select all

https://3rabica.org/index.php?search=www.stats.gov.cn&title=%D8%AE%D8%A7%D8%B5%3A%D8%A8%D8%AD%D8%AB&go=%D8%A7%D8%B0%D9%87%D8%A8

A440
Posts: 4760
Joined: Sat Nov 20, 2010 1:56 am

Re: 3rabica.org

Post by A440 » Thu Apr 22, 2021 12:28 pm

Sorry to hear about the difficulties there.

First thing up is that you may want to harden your site as follows:

Consider creating an SPF record to prevent spammers from abusing your email address. If you don't send any emails from this domain, please use v=spf1 -all (see: http://www.openspf.org/Introduction)
Security headers:
Missing security header to prevent Content Type sniffing.
See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security
Missing Strict-Transport-Security security header.

Missing Content-Security-Policy directive. It is recommended to add the following CSP directives (you can use default-src if all values are the same): script-src, object-src, base-uri, frame-src[/color
See: https://blog.sucuri.net/2018/04/content-security-policy.html]


Otherwise my scans come back clean.

Rated.

diablo6006
Posts: 3
Joined: Thu Apr 15, 2021 4:02 pm

Re: 3rabica.org

Post by diablo6006 » Thu Apr 22, 2021 2:45 pm

Thank you for your prompt reply.

here is a security report after implementing new headers.

Code: Select all

https://securityheaders.com/?q=3rabica.org&followRedirects=on

Post Reply

Who is online

Users browsing this forum: Baidu [Spider] and 3 guests