hep-bejune.ch

.ch crawl

First seen 2026-05-29 · Last seen 2026-05-31 · ok HTTP/1.1 200 579 ms crawled 2026-05-31

CH · 159.100.250.187 · AS61098 Akenes SA

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title

La HEP-BEJUNE forme les enseignants de demain

Description

La Haute École Pédagogique BEJUNE forme les enseignantes et les enseignants des cantons de Berne (pour sa partie francophone), du Jura et de Neuchâtel.

Language

Generator

IceCube2.Net

Canonical

https://www.hep-bejune.ch/fr/Accueil/Accueil-Haute-Ecole-Pedagogique-des-cantons-de-Berne-du-Jura-et-de-Neuchatel-Suisse.html

Feeds

Technology

CMS: Gatsby
Stack: ASP.NET

Social

Contact

Email

Phone

0844 886 996

Address

Haute École Pédagogique BEJUNERoute de Moutier 142800 Delémont0844 886 996info@hep-bejune.ch

DNS records live

NS

hepdnse1.hep-bejune.ch
hepdnse2.hep-bejune.ch

MX

10 ne2mx9b.ne.ch
10 nemx9b.ne.ch

TXT

8ObQTe8iXrRuDIcDz05YPBSfq4tAelHwzhX3KfJnv+eNbLk09QM06uo3X4tf6aliZtnCCEwiEMjbu00jxpDHGw==

Verified for

Apple
Google
Microsoft 365

Email authentication partial

SPF

v=spf1 include:spf1.hep-bejune.ch include:spf.protection.outlook.com include:servers.mcsv.net -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc.reports@hep-bejune.ch,mailto:dmarc_agg@vali.email; ruf=mailto:dmarc.forensic@hep-bejune.ch; fo=1;

policy: none (monitoring only)

DKIM

k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
s1: v=DKIM1;k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmPvjGm4/rP7hdgFc2lXSaw+uQV/NLyB+WXPT5X0iF88GH4RMHhAyxJNtnRhpMzV0oZLZbTegxobegHiD…
s2: v=DKIM1;k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkEydapoZFb9RjAyuytI696uStKjHbrXwAP2zhNEyQ54RkpwsUylGrRSKBk67QCkXCkDvcHEQ02M06NMp…

selectors probed

Certificate (current)

R12

from 2026-05-26 to 2026-08-24

Expires in 84 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.hep-bejune.ch

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' lime-new.hostsolutions.ch; worker-src 'self' blob:; script-src 'self' localhost 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' *.google-analytics.com static-cl.icecubeapps.com *.usersnap.com www.googletagmanager.com cdn.curator.io s7.addthis.com;
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (8)

Linked from (2)

iconomix.ch×1
claceso.ch×1