eca-jura.ch
eca-jura.ch
HTML metadata
Technology
- CMS
- Gatsby
- Stack
- ASP.NET
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (3)
- cdn.icecube2.net×1
- www.googletagmanager.com×1
- www.protection-dangers-naturels.ch×1
Social
Contact
- Phone
DNS records live
- NS
-
- dns1.globaz.ch
- dns2.globaz.ch
- MX
-
- 10 ecajura-ch0i.mail.protection.outlook.com
- TXT
-
mandrill_verify.QlOnqL-rhFvId-TggsaNRA
- Verified for
-
- Microsoft 365
Email authentication partial
- SPF
-
v=spf1 mx include:spf.protection.outlook.com ip4:217.162.16.0/24 ?allneutral (?all) - DMARC
-
v=DMARC1; p=nonepolicy: none (monitoring only) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2qYBol7yJqHjRkJQ8u2dlOGGuQAHyiTv+IaqorH13bAsg3p/VWE1m9aZ9n+/b18uaexKSBrBJ7FXH6…
selectors probed - selector1:
Certificate (current)
R12
Expires in 48 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self' apricot.hostsolutions.ch; worker-src 'self' blob:; script-src 'self' localhost 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' *.google-analytics.com static-cl.icecubeapps.com *.usersnap.com www.googletagmanager.com cdn.curator.io www.protection-dangers-naturels.ch cdn.icecube2.net;- strict-transport-security
max-age=31536000; includeSubDomains; preload
Links to (8)
- vkg.ch×1
- instagram.com×1
- icecube2.net×1
- facebook.com×1
- ethosfund.ch×1
- bfb-cipi.ch×1
- artionet.ch×1
- alarmemeteo.ch×1