basler-ruder-club.ch

HTML metadata

Technology

Server

LiteSpeed

CMS

Joomla

PHP

8.2.31 security-only

jQuery

3.5.1

Fonts

• Font Awesome
• Google Fonts

Third-party hosts loaded (3)

• fonts.googleapis.com×3
• fonts.gstatic.com×1
• use.fontawesome.com×1

Social

• facebook
• instagram

DNS records live

NS

• ns6.masterhomepage.ch
• ns7.masterhomepage.ch

MX

• 10 mx01.tophost.ch
• 10 mx02.tophost.ch

Email authentication partial

SPF

v=spf1 ip4:46.232.181.68 ip4:46.232.181.68 +a +mx ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

• default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv09HFTYVi6DKS4zqqZCXgXT4SKSdBACyJCJPpqTa96Pm4gFRiq9P9D3kgdiaZyMVibpqDdyVQ8I9vL…
• k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 55/100 Checked live page: https://basler-ruder-club.ch/

present

• content-security-policy
• x-content-type-options

findings

• missing HSTS
• CSP allows unsafe inline scripts/styles
• missing frame protection
• missing Referrer Policy
• missing Permissions Policy

Links to (8)

• wsv.de×1
• trafina.ch×1
• swissrowing.ch×1
• merianiselin.ch×1
• masterhomepage.ch×1
• instagram.com×1
• facebook.com×1
• 4row.com×1

Linked from (1)

• casulli.ch×1