indexo.dev

stadtwil.ch

.ch crawl

First seen 2026-05-29 · Last seen 2026-05-31 · ok HTTP/1.1 200 766 ms crawled 2026-05-31

CH · 85.217.163.12 · AS61098 Akenes SA

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Stadt Wil
Language
de-CH

Open Graph

url
https://www.stadtwil.ch/
title
Stadt Wil
locale
de_CH
site name
Stadt Wil
locale:alternate
fr_CH

Technology

Server
nginx
CMS
Gatsby

Third-party hosts loaded (1)

  • analytics.seantis.ch×1

Social

Contact

Email
Phone

DNS records live

NS
  • ns1.hosttech.ch
  • ns2.hosttech.ch
  • ns3.hosttech.ch
MX
  • 10 mta1.abxsec.com
  • 10 mta2.abxsec.com
TXT
  • 4rrmo61g2495tf3nta2apd63ou

Email authentication partial

SPF
v=spf1 mx include:_spf.abxsec.com a:smtp.swil.ch a:bildung-web.ch include:spf.nl2go.com include:_spf.i-web.ch include:spf.abacuscity.ch include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:secsys-rua@abraxas.ch,mailto:dmarc@stadtwil.ch; ruf=mailto:secsys-ruf@abraxas.ch
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-05-18 to 2026-08-16
Expires in 76 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.stadtwil.ch/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-content-type-options
nosniff
content-security-policy
base-uri 'self';block-all-mixed-content;child-src 'self' https://*.infomaniak.com https://*.vimeo.com https://*.youtube.com https://app.jobportal.abaservices.ch https://checkout.stripe.com https://pay.datatrans.com https://pay.sandbox.datatrans.com https://stadt-wil.abacuscity.ch https://wilsg.citymobile.ch https://www.canva.com https://www.google.com;connect-src 'self' *.sentry.io https://analytics.seantis.ch https://api.mapbox.com https://cdn.jsdelivr.net https://checkout.stripe.com https://geodesy.geo.admin.ch https://map.geo.bs.ch https://maps.zg.ch https://wms.geo.admin.ch/ https://wmts.geo.bs.ch;default-src 'self';font-src 'self' data: http: https:;form-action 'self';img-src 'self' data: http: https:;object-src 'none';script-src 'self' https://analytics.seantis.ch/js/script.js https://browser.sentry-cdn.com https://checkout.stripe.com https://js.sentry-cdn.com https://pay.datatrans.com https://pay.sandbox.datatrans.com;style-src 'self' 'unsafe-inline' https:
strict-transport-security
max-age=31536000; includeSubDomains

Links to (7)

Linked from (3)