derbaumanager.ch — domain check, WHOIS, DNS & reputation

HTML metadata

Title

Stöckli & Partner Baumanagement AG - Stöckli & Partner Baumanagement AG

Description

Als Totalunternehmer entwickeln und realisieren wir marktgerechte Projekte im Wohnungs-, Gewerbe- und Industriebau im Auftrag von Kunden oder in Eigeninitiative

Language

de

Generator

Elementor 4.1.1; features: e_font_icon_svg, additional_custom_breakpoints; settings: css_print_method-external, google_font-enabled, font_display-swap

Canonical

https://www.derbaumanager.ch/

Feeds

Open Graph

url: https://www.derbaumanager.ch/
title: Stöckli & Partner Baumanagement AG - Stöckli & Partner Baumanagement AG
locale: de_DE
site name: Stöckli & Partner Baumanagement AG
description: Als Totalunternehmer entwickeln und realisieren wir marktgerechte Projekte im Wohnungs-, Gewerbe- und Industriebau im Auftrag von Kunden oder in Eigeninitiative
updated time: 2026-03-13T16:01:02+01:00

Technology

Server: Apache
CMS: WordPress
jQuery: 3.7.1

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (4)

fonts.googleapis.com×7
fonts.gstatic.com×1
gmpg.org×1
www.googletagmanager.com×1

Social

Contact

Email

info@derbaumanager.ch

Phone

056%206644500

Address

Bremgartenstrasse 11, 5634, Merenschwand, Freiamt / Aargau, Schweiz

DNS records live

NS

ns.hostpoint.ch
ns2.hostpoint.ch
ns3.hostpoint.ch

MX

0 derbaumanager-ch.mail.protection.outlook.com

Email authentication weak

SPF

v=spf1 a mx ip4:185.242.200.110 include:spf.protection.outlook.com -all

strict (-all)

DMARC

not published

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCoTdWQG0P5rQU23q51z+2MDv0OvUbd1/NcSqzdGqjma6FZF5QphPU1Nlh41Qj9yJBSKxd8m0qzKbF652Yabw…

selectors probed

Certificate (current)

R12

from 2026-05-20 to 2026-08-18

Expires in 78 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.derbaumanager.ch/

present

content-security-policy
x-frame-options
x-content-type-options
referrer-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: img-src 'self' data: https://www.googletagmanager.com blob: https://ssl.gstatic.com https://secure.gravatar.com https://ts.w.org https://s.w.org https://ps.w.org; default-src 'self'; script-src 'self' 'unsafe-inline' https://www.googletagmanager.com https://platform.twitter.com https://cdnjs.cloudflare.com https://js.stripe.com https://secure.polldaddy.com https://apis.google.com https://connect.facebook.net https://app.satismeter.com https://gc.kis.v2.scr.kaspersky-labs.com https://cdn.jsdelivr.net https://me.kis.v2.scr.kaspersky-labs.com 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://platform.twitter.com https://cdnjs.cloudflare.com https://js.stripe.com https://secure.polldaddy.com https://apis.google.com https://connect.facebook.net https://app.satismeter.com https://gc.kis.v2.scr.kaspersky-labs.com https://cdn.jsdelivr.net https://me.kis.v2.scr.kaspersky-labs.com ; style-src 'self' 'unsafe-inline' https://font
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-embedder-policy: same-origin
cross-origin-resource-policy: same-site

Links to (1)

linkedin.com×1

Linked from (1)

imovatec.ch×1