indexo.dev

stgag.ch

.ch crawl

First seen 2026-05-27 · Last seen 2026-05-31 · ok HTTP/1.1 200 851 ms crawled 2026-05-30

DE · 185.110.152.26 · AS203969 Nexula GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Home
Description
Die Spital Thurgau ist eine weit anerkannte, grosse und breit aufgestellte Spitalgruppe.
Language
de
Generator
TYPO3 CMS
Canonical
/

Technology

Server
Apache
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×1

Social

Contact

Phone

DNS records live

NS
  • ns.ymc.ag
  • ns.ymc.ch
  • ns.ymc.zone
  • ns.ymcag.com
MX
  • 10 mx.stg.activeguard.cloud
TXT
  • _6ebv0p92a80ofc0sf3y1n4mgzh1011i
  • knowbe4-site-verification=de30ff6180de0ce07ad0e804204ca80f
Verified for
  • Apple
  • Atlassian
  • Cisco
  • Google
  • Microsoft 365

Email authentication partial

SPF
v=spf1 mx mx:hin.ch ip4:5.102.146.39 ip4:185.94.144.6 ip4:185.94.144.7 ip4:185.94.144.8 ip4:195.65.170.26 include:spf.umantis.com include:spf.crsend.com include:spf.protection.outlook.com include:_spf.kollofy.cloud include:_spf.eu.mailgun.org include:_spf.ch.activeguard.io -all
strict (-all)
DMARC
v=DMARC1; p=none; pct=100; rua=mailto:dmarc@stgag.ch; ruf=mailto:dmarc@stgag.ch; fo=1; adkim=s; aspf=s
policy: none (monitoring only)
DKIM
  • s1: k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Q3rqKTtjdq1PP7QrIVQ/gADV+Rx4YPE7Bz2FHJHLj6PXwSx3Bz/4F/Hr6sQ/lcRdV0xzXWkUd0GwfoibcfeNBq6…
selectors probed

Certificate (current)

E8
from 2026-05-20 to 2026-08-18
Expires in 78 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 55/100 Checked live page: https://www.stgag.ch/

present
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy-report-only
default-src 'self'; script-src 'self' 'unsafe-inline' https://challenges.cloudflare.com https://www.googletagmanager.com https://www.google-analytics.com https://ssl.google-analytics.com; style-src 'self' 'unsafe-inline'; img-src 'self' data: blob: https://www.google-analytics.com https://www.googletagmanager.com; font-src 'self' data:; connect-src 'self' https://challenges.cloudflare.com https://www.google-analytics.com https://analytics.google.com https://stats.g.doubleclick.net; frame-src 'self' https://challenges.cloudflare.com; frame-ancestors 'self'; object-src 'none';

Links to (4)

Linked from (3)