kwro.ch
kwro.ch
HTML metadata
Technology
- Server
- nginx
- CMS
- WordPress 7.0
- jQuery
- 3.7.1
Third-party hosts loaded (2)
- www.ocvs.ch×9
- gmpg.org×1
Social
Contact
- Phone
DNS records live
- NS
-
- ns100.kreativmedia.ch
- ns99.kreativmedia.ch
- MX
-
- 10 mailgw01.komodo.ch
- 10 mailgw02.komodo.ch
- Verified for
-
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 mx include:spf.protection.outlook.com include:_spf.kreativmedia.ch -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine;policy: quarantine - DKIM
- no key found at common selectors
Certificate (current)
R12
Expires in 60 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
same-origin- x-frame-options
sameorigin- permissions-policy
fullscreen=(self), geolocation=*, camera=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' https://www.ocvs.ch/ https://www.kwro.ch/ https://js.hcaptcha.com/ https://portal.klewel.com/; connect-src 'self' data: https://www.ocvs.ch/ https://www.kwro.ch/ https://newassets.hcaptcha.com/; img-src * data: blob:; style-src 'self' 'unsafe-inline' https://www.ocvs.ch/ https://www.kwro.ch/https://portal.klewel.com/; base-uri 'self' https://www.ocvs.ch/; form-action 'self' https://www.ocvs.ch/ https://www.kwro.ch/ https://www.kwro.ch/; font-src 'self' data: https://www.ocvs.ch/ https://www.kwro.ch/; frame-src https://www.youtube.com https://www.youtube-nocookie.com https://newassets.hcaptcha.com; worker-src 'self' data: blob: https://www.ocvs.ch/ https://www.kwro.ch/; frame-ancestors 'none'; media-src *.cloudfront.net;- strict-transport-security
max-age=63072000; includeSubDomains
Links to (5)
Linked from (1)
- ocvs.ch×1