denner.ch
denner.ch
HTML metadata
Technology
- Server
- nginx
- CMS
- Nuxt
Third-party hosts loaded (2)
- denner.imgix.net×17
- fkx0vmbjp5.kameleoon.io×3
Social
DNS records live
- NS
-
- migze100.migros.ch
- migze104.migros.ch
- ns3.migros.ch
- MX
-
- 10 denner-ch.mail.protection.outlook.com
- TXT
-
Show 5 TXT records
swisssign-check=LJRX0dvvynJ_jF7Hh033avyDHY8dtm-domain-verification=_GZLGtae_4aRuxRnTt2VMTEJWVwOj17_5lSMzl3ztUE8SCYz23sHOjWEPYQnrPt//a0TmbFFoRUCeBHalWawOzGTRf9rPFHf2P6jlQlegXXuZYIfwnsqIsH681gpcQQtw==external-share-confluence-domain-verification=TUkYFSyg4sK9bC4N5he9NXBLp9CJ2f9aQeytbBY9SpuEMS=890FDA14D1D173BF013DC125295DA7F79CA34271
- Verified for
-
- Adobe
- Apple
- Atlassian
- DocuSign
- Google Workspace
- Microsoft 365
- OneTrust
Email authentication strong
- SPF
-
v=spf1 ip4:164.14.6.0/24 ip4:164.14.4.0/24 ip4:35.214.212.238/32 include:spf.protection.outlook.com include:spf.umantis.com include:spf.migros.ch a:c.spf.service-now.com include:amazonses.com include:spf.cs2.ch a:b.spf.service-now.com a:d.spf.service-now.com include:_spf-dc2.successfactors.com -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; sp=quarantine; rua=mailto:it-infrastruktur@denner.ch; ruf=mailto:it-infrastruktur@denner.ch; pct=100; ri=86400policy: quarantine · sp=quarantine - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNfK10NG9i5vvTKfM6QoELdWtk55PZQnl5H/RcRk1JV0M+cKusUpB+NTuF5Vu5jW5yIBH6HkZy013a… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvz3/KOhkloE7OuTnNb5UvoYrzObUI7o5b9YkTYSD0VBv2X6hziGsmkMDUHwLfXyf59c1FznNn+0ioW2f/P… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzA+Eg+WZYco8mtBsKbmcIxDiq5Eya6kyBG4EOiuNr3U+u+j1U68MAvhmEyLo5pNByoZAPvpqZKjVzdvcR3…
selectors probed - selector1:
Certificate (current)
SwissSign RSA TLS DV ICA 2022 - 1
Expires in 95 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
no-referrer- x-frame-options
SAMEORIGIN- permissions-policy
camera=(), display-capture=(), fullscreen=(self "https://interaktiv.kasyx.de"), geolocation=(), microphone=()- x-content-type-options
nosniff- content-security-policy
base-uri 'none'; font-src 'self' data: https://fonts.gstatic.com https://fonts.googleapis.com; form-action 'self'; frame-ancestors 'self' *.kameleoon.com *.denner.ch; img-src 'self' data: https://denner.imgix.net https://app-wallee.com https://maps.googleapis.com https://maps.gstatic.com https://demofileserver.prediggo.net https://www.denner.ch https://cdn.cookielaw.org https://*.doubleclick.net https://*.google.com *.mastercard.com *.visa.com *.discover.com *.discovercard.com *.swisscard.ch *.facebook.com *.facebook.net *.migros.ch *.kameleoon.io *.kameleoon.com *.kameleoon.eu *.kameleoon.net *.experimentation.dev https://secure.3ds.cornercard.ch; object-src 'none'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://fonts.gstatic.com https://fonts.googleapis.com https://app-wallee.com *.mastercard.com *.visa.com *.discover.com *.discovercard.com *.swisscard.ch *.facebook.com *.facebook.net *.migros.ch *.kameleoon.io *.kameleoon.com *.kameleoon.eu *.kameleoon.net *.experi- strict-transport-security
max-age=15552000; includeSubDomains
Links to (9)
- apple.com×1
- facebook.com×1
- google.com×1
- instagram.com×1
- issuu.com×1
- linkedin.com×1
- migros.ch×1
- tiktok.com×1
- youtube.com×1