enersuisse.ch
HTML metadata
Technology
- CMS
- Gatsby
Third-party hosts loaded (1)
- cz42.objects.nineapis.ch×14
Social
Contact
DNS records live
- NS
-
- ns1.avectris.ch
- ns2.avectris.ch
- MX
-
- 0 enersuisse-ch.mail.protection.outlook.com
- TXT
-
knowbe4-site-verification=fe25965cb54519e1aff41a5047be9d941ff12pl2jzm21vy8vkyfbzvg5g61yzsn_wy6jod0jhratvscll83i6inzn4azorj
- Verified for
-
- Atlassian
- Microsoft 365
- Miro
Email authentication partial
- SPF
-
v=spf1 a ip4:185.94.144.39 ip4:185.94.144.40 include:spf.protection.outlook.com include:spf.mail.linkyard-cloud.ch ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none; rua=mailto:dmarc_agg@vali.emailpolicy: none (monitoring only) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArahebnxhczvKr/4OCYPYG5zTpGmlyjncgdsalW66BSc38oncw4na6E3WvQiCHS82Hd1Y9K88fY3pzh…
selectors probed - selector1:
Certificate (current)
R12
Expires in 71 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- cross-origin-opener-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
DENY- x-content-type-options
nosniff- content-security-policy
default-src 'self'; img-src data: 'self' https://cz42.objects.nineapis.ch/ https://cdn.ckeditor.com/; frame-src 'self' https://ohws.prospective.ch/ https://player.vimeo.com/; style-src 'self' 'unsafe-inline' https://cdn.ckeditor.com/; script-src 'self' 'unsafe-inline' https://cdn.ckeditor.com/ https://cdnjs.cloudflare.com/ https://plausible.io/- strict-transport-security
max-age=31536000; includeSubDomains- cross-origin-opener-policy
same-origin
Links to (5)
- xing.com×1
- primeo-energie.ch×1
- nine.ch×1
- linkedin.com×1
- ekz.ch×1