indexo.dev

lipo-mastercard.ch

.ch crawl

First seen 2026-05-27 · Last seen 2026-05-27 · ok HTTP/1.1 200 526 ms crawled 2026-05-30

CH · 212.243.147.201 · AS3303 Bluewin

Reputation 100/100

Classifying

HTML metadata

Title
Die LIPO Mastercard
Language
de

Technology

CMS
Gatsby
Analytics
  • Google Tag Manager
Cookie consent
  • OneTrust

Third-party hosts loaded (2)

  • cdn.cookielaw.org×1
  • www.googletagmanager.com×1

Contact

Phone

DNS records live

NS
  • ns.hostpoint.ch
  • ns2.hostpoint.ch
  • ns3.hostpoint.ch
TXT
  • swisssign-check=2hm8fvWRIwDMCzy-MlGKCfk9Cn8

Email authentication no MX

SPF
v=spf1 redirect=spf-permissive.mail.hostpoint.ch
missing all
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

SwissSign RSA TLS OV ICA 2022 - 1
from 2025-07-17 to 2026-07-17
Expires in 46 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://lipo-mastercard.ch/de/index.php

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
default-src 'self' https://maxcdn.bootstrapcdn.com; frame-ancestors 'self' https://*.cembra.ch; style-src 'self' 'unsafe-inline' https://doapi-cembra-tsn.finstar.ch https://doapi-cembra-prd.finstar.ch https://optimize.google.com https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://doapi-cembra-tsn.finstar.ch https://*.licdn.com https://doapi-cembra-prd.finstar.ch https://maps.googleapis.com https://maps.google.com https://*.cookielaw.org https://*.youtube.com https://cdn.amplitude.com/ https://www.google-analytics.com https://www.googleoptimize.com https://optimize.google.com https://*.googletagmanager.com https://*.connects.ch https://www.googleadservices.com https://www.usemaxserver.de https://track.adform.net https://ad.53rv3r.com https://cembra.rt.bly.ch https://cembra-astra.sandsiv.com https://googleads.g.doubleclick.net https://s2.adform.net https://connect.facebook.net https://*.mynsystems.com https://*.serversidegraphics.com https://uk.per
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (4)

Linked from (1)