indexo.dev

glarner-pasteten.ch

.ch crawl

First seen 2026-06-04 · Last seen 2026-06-04 · ok HTTP/1.1 200 2111 ms crawled 2026-06-04

CH · 217.26.51.225 · AS29097 Hostpoint AG

Reputation 79/100 weak security headers spf without fallback no dmarc policy

Classifying

HTML metadata

Title
Café-Konditorei Müller | Näfels | handgefertigte Genussmomente
Description
Einmalige Geschmackserlebnisse, schöne Momente und die Freude am Leben warten auf dich
Language
de

Technology

Server
Apache
CMS
Gatsby
Stack
PHP
Analytics
  • Google Tag Manager

Third-party hosts loaded (4)

  • chimpstatic.com×1
  • konditoreimueller.roundshot.com×1
  • www.googletagmanager.com×1
  • www.powr.io×1

Social

Contact

Email
Phone

DNS records live

NS
  • ns.hostpoint.ch
  • ns2.hostpoint.ch
  • ns3.hostpoint.ch
MX
  • 10 mx1.mail.hostpoint.ch
  • 10 mx2.mail.hostpoint.ch
Verified for
  • Google

Email authentication weak

SPF
v=spf1 redirect=spf-permissive.mail.hostpoint.ch
missing all
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-04-10 to 2026-07-09
Expires in 34 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.glarner-pasteten.ch/

present
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • missing Content Security Policy
  • weak frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff
content-security-policy-report-only
font-src *.gstatic.com https://cdnjs.cloudflare.com *.stripe.com *.stripecdn.com klarna.com *.klarna.com *.klarnacdn.net *.klarnaevt.com *.link.com *.amazon.com https://www.gstatic.com https://fonts.gstatic.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com 'self' 'unsafe-inline'; frame-ancestors *.stripe.com stripe.com *.link.com *.amazon.com 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com https://www.google.com/recaptcha/ *.pow

Links to (7)

Linked from (2)