glarnergemeinnuetzige.ch
HTML metadata
Technology
- Server
- Apache
- CMS
- Joomla
Contact
- Phone
- Address
- Linthlistrasse 9, 8868 Oberurnen
DNS records live
- NS
-
- dns1.exigo.ch
- dns2.exigo.ch
- MX
-
- 10 glarnergemeinnuetzige-ch.mail.protection.outlook.com
- Verified for
-
- Microsoft 365
Email authentication weak
- SPF
-
v=spf1 a include:spf.protection.outlook.com ip4:193.93.20.0/26 -allstrict (-all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R13
Expires in 74 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-resource-policy
- findings
-
- short HSTS max-age
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
no-referrer- x-frame-options
DENY- permissions-policy
geolocation=self, microphone=(), camera=()- x-content-type-options
nosniff- content-security-policy
default-src 'none'; base-uri 'self'; connect-src *.readspeaker.com *.mapbox.com 'self'; frame-src *.readspeaker.com *.raisenow.io *.raisenow.com 'self'; form-action *.readspeaker.com 'self'; img-src 'self' data: *.readspeaker.com https: blob:; script-src *.readspeaker.com 'self' data: blob: 'unsafe-inline' 'unsafe-eval'; style-src *.readspeaker.com 'self' 'unsafe-inline'; frame-ancestors 'self'; font-src 'self' data:; object-src 'self'; media-src 'self';- strict-transport-security
max-age=0; includeSubDomains- cross-origin-resource-policy
same-origin