indexo.dev

koffel-baupartner.ch

.ch crawl

First seen 2026-06-02 · Last seen 2026-06-04 · ok HTTP/1.1 200 621 ms crawled 2026-06-03

CH · 217.26.52.43 · AS29097 Hostpoint AG

Reputation 100/100

Classifying

HTML metadata

Title
Koffel + Partner Architekten
Description
Seit beinahe 30 Jahren entwerfen, planen und bauen wir Projekte, die nicht nur den verschiedensten Bauherrschaften dienen, sondern auch unserer Umwelt Rechnung tragen.
Language
de
Canonical
https://koffel-baupartner.ch/de/

Open Graph

site name
Koffel + Partner Architekten

Technology

Server
Apache
Stack
PHP

Social

Contact

Email
Phone

DNS records live

NS
  • ns.hostpoint.ch
  • ns2.hostpoint.ch
  • ns3.hostpoint.ch
MX
  • 0 koffelbaupartner-ch01e.mail.protection.outlook.com
Verified for
  • Microsoft 365

Email authentication strong

SPF
v=spf1 a:koffel-baupartner.ch include:spf.mail.hostpoint.ch include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1;p=reject;aspf=s;
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5blMSRNBmLb+HfGzT+wy9w9C+J7/8saSavshQlJV3acj4KWWtVm4etgRenQYpbkNbo0UYnechvV4LQ…
selectors probed

Certificate (current)

R12
from 2026-05-13 to 2026-08-11
Expires in 67 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://koffel-baupartner.ch/de/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'nonce-zeeuks+6jS2Kg+fqD6h96A==' 'strict-dynamic' 'unsafe-hashes' 'sha256-kbHtQyYDQKz4SWMQ8OHVol3EC0t3tHEJFPCSwNG9NxQ=' https://www.googletagmanager.com https://*.google-analytics.com https://www.google-analytics.com https://*.analytics.google.com https://cdn.cookielaw.org https://cdn-cookieyes.com https://consent.cookiebot.com https://api.permaleads.ch https://data.my.permaleads.ch https://connect.facebook.net https://app-wallee.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' data: https://fonts.gstatic.com; connect-src 'self' https://www.google-analytics.com https://*.google-analytics.com https://*.analytics.google.com https://www.googletagmanager.com https://api.permaleads.ch https://cdn.cookielaw.org https://geolocation.onetrust.com https://maps.googleapis.com https://*.facebook.com https://*.facebook.net; img-src 'self' data: blob: https://www.google-analytics.com https://*.google-analytics.com https://*.ana

Links to (2)

Linked from (2)