indexo.dev

gvl.ch

.ch crawl

First seen 2026-05-31 · Last seen 2026-06-03 · ok HTTP/1.1 200 1750 ms crawled 2026-06-01

CH · 194.124.233.224 · AS3303 Bluewin

Reputation 100/100

Classifying

HTML metadata

Title
Wir sichern und versichern Luzern – Gebäudeversicherung Luzern
Language
de-CH
Translations
  • de

Technology

Server
nginx

Third-party hosts loaded (2)

  • webcache-eu.datareporter.eu×2
  • app.friendlyanalytics.ch×1

Social

Contact

Phone
Address
Gebäudeversicherung LuzernHirschengraben 196002 Luzern

DNS records live

NS
  • ns.hostpoint.ch
  • ns2.hostpoint.ch
  • ns3.hostpoint.ch
MX
  • 10 mail.gvl.ch
Verified for
  • Google

Email authentication strong

SPF
v=spf1 mx ip4:87.239.204.116 ip4:46.22.31.231 ip4:46.22.31.232 ip4:194.124.233.39 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; ruf=mailto:informatik@gvl.ch; fo=1
policy: quarantine
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCQMVKeMDfs6JTY7BnFtahJq8KwYkWYJEXoZkAn6Q/jJhT+MyoSARMD9sSCJI9KeiY0VD5tGmYGFNmN7YCFxZ…
  • selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCz4s5A1MrnvNS0gKtgfNtBi9RI9PSZEj5SEMofY1gf42jN5kO4foQ0UOnjn+nqEiil+een88Nisj+kWI8Gio…
selectors probed

Certificate (current)

R12
from 2026-05-28 to 2026-08-26
Expires in 82 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.gvl.ch/de

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
same-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; connect-src 'self' https://*.geo.admin.ch https://*.datareporter.eu https://api.friendlycaptcha.com https://api.iconify.design https://liveupdate.pimcore.org https://i.ytimg.com https://app.friendlyanalytics.ch https://*.pusher.com wss://*.pusher.com https://fonts.googleapis.com; img-src 'self' data: https://api.iconify.design https://i.ytimg.com https://*.bugherd.com; style-src 'self' 'unsafe-inline' https://*.datareporter.eu https://*.schutz-vor-naturgefahren.ch https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.datareporter.eu https://*.schutz-vor-naturgefahren.ch https://*.yumpu.com https://cdn.jsdelivr.net/npm/friendly-challenge/widget.min.js https://app.friendlyanalytics.ch https://app.privacybee.io; font-src 'self' data: fonts.gstatic.com; frame-src 'self' https://*.youtube-nocookie.com https://*.yumpu.com https://www.homegate.ch; worker-src 'self' blob:;
strict-transport-security
max-age=300; includeSubDomains, max-age=15768000

Links to (5)

Linked from (3)