glarix.ch
HTML metadata
Technology
- Server
- Kestrel
- CMS
- Gatsby
- Cookie consent
-
- Usercentrics
Third-party hosts loaded (3)
- web.cmp.usercentrics.eu×2
- api.usercentrics.eu×1
- app.usercentrics.eu×1
Social
DNS records live
- NS
-
- ch.pro.io
- nl.pro.io
- p.dnh.net
- TXT
-
swisssign-check=sFw7KdrJW4HeqyEizsZRixU69Ts
- Verified for
-
Email authentication no MX
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R12
Expires in 37 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
same-origin- x-frame-options
deny- x-content-type-options
nosniff- content-security-policy
default-src 'none';connect-src 'self' https://*.usercentrics.eu https://matomo.kbglarus.ch;font-src 'self';frame-src 'self';frame-ancestors 'self';img-src 'self' data: https://*.usercentrics.eu;manifest-src 'self';script-src 'self' 'nonce-QiTDu86d3JPqJUyX' https://*.usercentrics.eu https://matomo.kbglarus.ch 'sha256-txR+iVr+HTc+XgYi+VEi+fGWl24RY1y9kzoLKwEacVA=';style-src 'self' 'unsafe-inline';worker-src 'self';media-src 'self';child-src 'self';object-src 'none';form-action 'self';- strict-transport-security
max-age=31536000; includeSubDomains
Links to (5)
Linked from (1)
- glkb.ch×1