maestrani.ch

HTML metadata

Technology

Server

nginx

CMS

Drupal

Fonts

• Font Awesome

Third-party hosts loaded (3)

• use.fontawesome.com×2
• cdn.jsdelivr.net×1
• cdnjs.cloudflare.com×1

Social

• linkedin
• youtube

DNS records live

NS

• ns.hostpoint.ch
• ns2.hostpoint.ch
• ns3.hostpoint.ch

MX

• 10 maestrani-ch.mail.protection.outlook.com

TXT

• +N8JRtuOxpboHXlp3j48kmAPbj6X+1IBjkcSbKNoW5gWFjqEdIhgM2+r2D4Rf+PwyiL7GySkku/AuRXOAyMNZw==

Email authentication strong

SPF

v=spf1 mx ip4:156.67.38.47/32 ip4:213.196.183.37 ip4:213.196.183.34 ip4:185.49.136.173 ip4:80.148.47.196 ip4:80.148.47.164 ip4:217.26.55.5 ip4:217.26.49.147 ip4:217.26.49.146 ip4:134.119.247.49 include:ispgateway.de include:spf.protection.outlook.com include:wlk-msg.de include:_spf.psm.knowbe4.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; pct=100

policy: reject (enforced)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDP7BCNh8K7KZN39je9F2Gis63LH7yg9GC2Z/6SsV0ySILLCOzFBRuTbM+fTy6rrzw+8JT7IdQ9P1RS7vzF12…
• selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAruewf4IiGRKG2NJODM2A+muoj+su92rGDXvzn3ke12vmlxJLjovfgSl96s40ry2uLoUckij0DpEjxT…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://maestrani.ch/

present

• x-frame-options
• x-content-type-options
• referrer-policy
• permissions-policy
• cross-origin-opener-policy
• cross-origin-embedder-policy
• cross-origin-resource-policy

findings

• missing HSTS
• missing Content Security Policy
• weak frame protection
• weak content type protection

Links to (7)

• youtube.com×1
• munz.ch×1
• minor.ch×1
• linkedin.com×1
• chocolatammann.ch×1
• chocolarium.ch×1
• brack.ch×1

Linked from (5)

• minor.ch×1
• munz.ch×1
• nera-tech.com×1
• chocolarium.ch×1
• senic.ch×1