peterhugi.ch
peterhugi.ch
HTML metadata
Technology
- CMS
- WordPress
Social
Contact
- Phone
DNS records live
- NS
-
- ns1.cyon.ch
- ns2.cyon.ch
- MX
-
- 0 mail.peterhugi.ch
- Verified for
-
Email authentication weak
- SPF
-
v=spf1 include:spf.protection.cyon.net -allstrict (-all) - DMARC
- not published
- DKIM
-
- default:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0fIj+H5CTptFbZsbKLTlT0CdbSjf4d3OLDBhby8fy+my/KTOPjDu6Ku3HN1fRZg4kEVL1wlPpSVkoq…
selectors probed - default:
Certificate (current)
R13
Expires in 28 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self' *.stutz-medien.dev; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.wordpress.org *.wp.com *.stutz-medien.dev *.googletagmanager.com *.google.com *.gstatic.com *.typekit.net s3.amazonaws.com *.list-manage.com *.userback.io privacybee.io *.privacybee.io; worker-src 'self' blob:; style-src 'self' 'unsafe-inline' *.wp.com *.stutz-medien.dev *.googleapis.com *.typekit.net *.userback.io privacybee.io *.privacybee.io; img-src 'self' data: *.wp.com *.wordpress.org *.gravatar.com *.stutz-medien.dev *.userback.io privacybee.io *.privacybee.io; font-src 'self' data: *.stutz-medien.dev *.gstatic.com *.typekit.net *.typekit.com *.userback.io privacybee.io *.privacybee.io; frame-src 'self' *.stutz-medien.dev *.youtube.com *.google.com *.vimeo.com *.userback.io privacybee.io *.privacybee.io; frame-ancestors 'self'; media-src 'self' *.stutz-medien.dev; connect-src 'self' *.stutz-medien.dev *.google.com *.userback.io *.amazonaws.com *.googletagmanager.com *.google-analytics.com pr- strict-transport-security
max-age=31536000