publica.ch
HTML metadata
Technology
- Server
- nginx
- CMS
- Nuxt
- JS framework
- Nuxt
Third-party hosts loaded (1)
- publica.rokka.io×7
Social
Contact
- Phone
DNS records live
- NS
-
- ins1.admin.ch
- ins2.admin.ch
- ins3.admin.ch
- ins4.admin.ch
- ins5.admin.ch
- MX
-
- 10 mx01.mail.admin.ch
- 10 mx02.mail.admin.ch
- 10 mx03.mail.admin.ch
- 10 mx04.mail.admin.ch
- TXT
-
mx-e2737e1b96ab0a58
- Verified for
-
- Apple
- Atlassian
- Cisco
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 redirect=_spfgroupb.admin.chmissing all - DMARC
-
v=DMARC1; p=quarantine; rua=mailto:dmarc.rua@admin.chpolicy: quarantine - DKIM
- no key found at common selectors
Certificate (current)
DigiCert Global G2 TLS RSA SHA256 2020 CA1
Expires in 191 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
connect-src 'self' *.publica.ch *.sentry.io *.liipgpt.ch *.liip.ch *.flourish.studio; font-src 'self' *.gstatic.com; frame-src 'self' *.youtube.com *.vimeo.com live.solique.ch publica.minerva.info *.flourish.studio flo.uri.sh *.mailxpert.ch; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.liipgpt.ch *.liip.ch *.jsdelivr.net fast.fonts.net publica.opsone-analytics.ch analytics.publica.ch public.flourish.studio *.mailxpert.ch *.sentry.io; style-src 'self' 'unsafe-inline' fast.fonts.net publica.opsone-analytics.ch *.mailxpert.ch *.googleapis.com; frame-ancestors 'self'; img-src 'self' data: *.rokka.io public.flourish.studio fast.fonts.net publica.opsone-analytics.ch *.vimeocdn.com *.vimeo.com *.mailxpert.ch; manifest-src 'self'; media-src 'self'; object-src 'self'; worker-src 'self';- strict-transport-security
max-age=31536000; includeSubDomains