rokfor.ch

HTML metadata

Technology

Server

nginx

Stack

PHP

DNS records live

NS

• ns1.first-ns.de
• robotns2.second-ns.de
• robotns3.second-ns.com

MX

• 10 mail.rokfor.ch

Verified for

• GlobalSign

Email authentication strong

SPF

v=spf1 include:spf.mailjet.com include:_spf.sui-inter.net +mx +a ip4:213.156.231.120 -all

strict (-all)

DMARC

v=DMARC1; p=quarantine

policy: quarantine

DKIM

• default: v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2T4SkaCur3COjK4+7sOf5zIWT4EJRExHCN660Zajg1HuJB9Q8fDyYVtMRmPx8r2o62njUnmgjd+h4PM2lOJS9…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwTCwBTDFr2ydWRjR2zWZ4hZjpumxD6GCdzbswmUwpMja108JkfkDqqTHcWrpiyHE5kPMc+3KFsnoL0ewax…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCn3+oqzul8SF3dgn8+NAtsSGujqfEfcfWHfD4abmNW/lQW9nHwbIy03p2kkMEvylN1sMsMmJPDD6SQmvSsSF8vah…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://www.rokfor.ch/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (1)

• vimeo.com×1

Linked from (2)

• institutneueschweiz.ch×1
• urshofer.ch×1