matterhornparadise.ch
matterhornparadise.ch
HTML metadata
Technology
- Server
- Apache
- CMS
- Gatsby
- Stack
- PHP
- Cookie consent
-
- Cookiebot
Third-party hosts loaded (1)
- consent.cookiebot.com×1
Social
Contact
- Phone
- Address
- Postfach 378, 3920, Zermatt, Wallis, CH
DNS records live
- NS
-
- ns.hostpoint.ch
- ns2.hostpoint.ch
- ns3.hostpoint.ch
- MX
-
- 10 zbag1.cleanmail.ch
- 10 zbag2.cleanmail.ch
Email authentication weak
- SPF
-
v=spf1 ip4:88.99.122.47 include:spf.protection.outlook.com include:traumgutscheine.com include:spf.cloud.ci-solution.com include:_spf.salesforce.com ~allsoftfail (~all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R12
Expires in 81 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP uses wildcard sources
- weak frame protection
- missing Permissions Policy
Header values
- referrer-policy
origin-when-cross-origin- x-frame-options
SAMEORIGIN, ALLOW-FROM https://my.ibexfusion.com/, ALLOW-FROM https://web.tweebie.com/, ALLOW-FROM https://www.zermatt.ch/, ALLOW-FROM https://zermatt.ch/, ALLOW-FROM https://www.matterhornparadise.ch/, ALLOW-FROM https://zermatt.traumgutscheine.com/, ALLOW-FROM https://development-eu01-bonfire.demandware.net, ALLOW-FROM https://staging-eu01-bonfire.demandware.net, ALLOW-FROM https://bggj-001.sandbox.us01.dx.commercecloud.salesforce.com, ALLOW-FROM https://bggj-002.sandbox.us01.dx.commercecloud.salesforce.com, ALLOW-FROM https://bggj-003.sandbox.us01.dx.commercecloud.salesforce.com, ALLOW-FROM https://bggj-004.sandbox.us01.dx.commercecloud.salesforce.com, ALLOW-FROM https://bggj-005.sandbox.us01.dx.commercecloud.salesforce.com, ALLOW-FROM https://bggj-006.sandbox.us01.dx.commercecloud.salesforce.com, ALLOW-FROM https://bggj-007.sandbox.us01.dx.commercecloud.salesforce.com, ALLOW-FROM https://bggj-008.sandbox.us01.dx.commercecloud.salesforce.com, ALLOW-FROM https://bggj-009.sandbox.us01- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self' https://my.ibexfusion.com/ https://web.tweebie.com https://www.zermatt.ch https://zermatt.ch https://www.matterhornparadise.ch https://zermatt.traumgutscheine.com https://development-eu01-bonfire.demandware.net https://staging-eu01-bonfire.demandware.net https://bggj-001.sandbox.us01.dx.commercecloud.salesforce.com https://bggj-002.sandbox.us01.dx.commercecloud.salesforce.com https://bggj-003.sandbox.us01.dx.commercecloud.salesforce.com https://bggj-004.sandbox.us01.dx.commercecloud.salesforce.com https://bggj-005.sandbox.us01.dx.commercecloud.salesforce.com https://bggj-006.sandbox.us01.dx.commercecloud.salesforce.com https://bggj-007.sandbox.us01.dx.commercecloud.salesforce.com https://bggj-008.sandbox.us01.dx.commercecloud.salesforce.com https://bggj-009.sandbox.us01.dx.commercecloud.salesforce.com https://dev-cc.zermatt.swiss https://stg-cc.zermatt.swiss https://www.zermatt.swiss https://*.ibextouch.ch https://*.ibexsmart.ch https://infosnow.zbag.ch https://i- strict-transport-security
max-age=63072000; preload, max-age=63072000; preload