negxt.ch
HTML metadata
Technology
- Server
- nginx
- Analytics
-
- Google Tag Manager
- Social widgets
-
- Vimeo Embed
Third-party hosts loaded (2)
- player.vimeo.com×1
- www.googletagmanager.com×1
Social
Contact
- Phone
DNS records live
- NS
-
- ns1.hostserv.eu
- ns2.hostserv.eu
- ns3.hostserv.eu
- MX
-
- 10 mx01.hornetsecurity.com
- 20 mx02.hornetsecurity.com
- 30 mx03.hornetsecurity.com
- 40 mx04.hornetsecurity.com
- TXT
-
soodiuk6bo7tj2of7tsusskh9u6fok51opajdk5v4pdd2d76vodb
- Verified for
-
- Apple
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 include:spf.hornetsecurity.com include:_spf01.eyevip.ch include:spf.protection.outlook.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=reject; pct=100policy: reject (enforced) - DKIM
- no key found at common selectors
Certificate (current)
R13
Expires in 60 days
HTTP security headers
- present
-
- strict-transport-security
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- missing Content Security Policy
- weak content type protection
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
deny- permissions-policy
accelerometer=(), ambient-light-sensor=(), autoplay=*, battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=*, geolocation=*, gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=()- x-content-type-options
nosniff, nosniff- strict-transport-security
max-age=31536000; includeSubDomains
Links to (2)
- linkedin.com×1
- ekt.ch×1
Linked from (1)
- ekt.ch×1