solstis.ch

HTML metadata

Title: Solstis, le leader suisse des installations solaires - Solstis SA
Description: Solstis, le leader suisse des installations solaires
Language: de-ch
Generator: TYPO3 CMS
Canonical: https://www.solstis.ch/fr

Open Graph

url: https://www.solstis.ch/fr
title: Solstis, le leader suisse des installations solaires
site name: Solstis SA
description: Solstis, le leader suisse des installations solaires

Technology

Analytics

Google Tag Manager

Cookie consent

Usercentrics

Third-party hosts loaded (3)

app.usercentrics.eu×1
www.facebook.com×1
www.googletagmanager.com×1

Social

Contact

Email

Phone

DNS records live

NS

ns07.ch-dns.net
ns08.ch-dns.net

MX

10 mx2-eu1.ppe-hosted.com
5 mx1-eu1.ppe-hosted.com

TXT

Show 4 TXT records

_xrjsphxd7pkichpky40qbflwjwobtfd
ppe-531127cb879966d0609da2ae7481c9482897363d
_m5tqhulooqo1ix53s7dqnb3hrvz45cv
UgAGeTNTc3vIqvcN6BSfRsxReepn7PmSuX91sKdsDCdG9u0s+oBG3ii3WSQkw3ZdN1z1YVyPR6TyZPaHqS2V/Q==

Verified for

Google

Email authentication partial

SPF: v=spf1 ip4:80.74.149.162 ip4:80.74.149.163 ip4:81.62.233.154 ip4:80.80.228.47 ip4:185.123.25.18 ip4:109.206.232.27 a:dispatch-eu.ppe-hosted.com a:mx1.3esynaptiq.com a:proxy.3esynaptiq.com include:spf.protection.outlook.com include:spf.mailpro.com include:_spf.odoo.com -all
strict (-all)
DMARC: v=DMARC1; p=none;
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1

from 2026-04-29 to 2026-11-14

Expires in 166 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.solstis.ch/fr

present

strict-transport-security
content-security-policy
content-security-policy-report-only
x-content-type-options
referrer-policy
permissions-policy

findings

missing frame protection

Header values

referrer-policy: strict-origin-when-cross-origin
permissions-policy: geolocation=(self)
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy-report-only: default-src *; script-src 'self' 'unsafe-eval' *.bkw.ch *.cookiebot.com 'report-sample'; img-src 'self' data: blob: *.linkedin.com *.usercentrics.eu 6016554.global.siteimproveanalytics.io pms.imgix.net www.google.ch www.google.com *.bkw.ch *.bkw.com; base-uri 'self'; frame-src 'self' login.portal-services.ch *.adform.net *.doubleclick.net *.usercentrics.eu *.bkw.com; style-src-elem 'self' 'unsafe-inline' *.bkw.ch *.gstatic.com 'report-sample'; script-src-elem 'self' 'unsafe-inline' blob: login.portal-services.ch *.adform.net *.clarity.ms *.doubleclick.net *.usercentrics.eu *.bkw.ch 'report-sample'; script-src-attr 'self' 'unsafe-inline' 'report-sample'; style-src 'self' 'unsafe-inline' *.bkw.ch *.cookiebot.com 'report-sample'; font-src 'self' data: *.bkw.ch *.gstatic.com; frame-ancestors 'self' *.bkw.ch; media-src 'self' data:; worker-src 'self' blob:; report-uri https://sentry.bkw.ch/api/5/security/?sentry_key=17d36f4cce6ab33fecda30bd4ceaed85