stobag.com — domain check, WHOIS, DNS & reputation

HTML metadata

Title

Sun protection from STOBAG. Swiss design. Since 1964. | STOBAG

Description

STOBAG has been developing and producing high-quality sun and weather protection solutions that harmoniously connect indoor spaces with their surroundings for 60 years.

Language

en

Canonical

https://www.stobag.com/global/en/

Translations

en ×4
fr ×4
de ×3
it ×2
nl ×2

Open Graph

title: Sun protection from STOBAG. Swiss design. Since 1964. | STOBAG
site name: stobag.com
description: STOBAG has been developing and producing high-quality sun and weather protection solutions that harmoniously connect indoor spaces with their surroundings for 60 years.

Technology

CDN: Amazon CloudFront
Server: AmazonS3
CMS: Nuxt
JS framework: Vue

Analytics

Plausible

Cookie consent

OneTrust

Third-party hosts loaded (3)

eu-central-1.graphassets.com×7
cdn.cookielaw.org×3
plausible.io×1

Social

Registration

Registrar

101domain GRS Limited

Created

2001-03-14

Expires

2027-03-14 286 days left

Updated

2026-01-14

Name servers

jaime.ns.cloudflare.com
olivia.ns.cloudflare.com

DNS records live

NS

jaime.ns.cloudflare.com
olivia.ns.cloudflare.com

MX

0 stobag-com.mail.protection.outlook.com

TXT

Show 10 TXT records

qhnh6voqqfoadm6u7m2q3j7uv
successfactors-site-verification=M2I5MDM4MzdjNzcxNGU2YTBhMDBiY2E1ZDYwMDBhZGFjN2JiMmU4ZDlhZWJmZTUyYmVkZTk3MzMyMzA3Yjc0OQ==
6lf2k98p31rvje03alpg6ttqbe
72ce3d23ocp991l1sthpqb7npb
MS=1D46992A3FC917AA72CE5AA1909753ECBBB91701
a50pm0472vqpu1hioru5qq3g2r
m1ps3qpvn77hhmeu3nhomuln15
n3kae33k44frlpm8rg52kqeu4e
nq7530ughksuigcu4259pioji4
pdq-domain-verification="PDQ543fcdt66"

Verified for

Atlassian
Google

Email authentication partial

SPF

v=spf1 mx include:spf.stobag.com include:spf.cs2.ch include:spf.crsend.com include:spf.protection.outlook.com include:_spf.expurgate.net include:_spf-dc12.successfactors.com include:spf.EU.exclaimer.net -all

strict (-all)

DMARC

v=DMARC1; p=none; pct=100; rua=mailto:re+illzaoeb673@dmarc.postmarkapp.com; sp=none;

policy: none (monitoring only) · sp=none

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlMFH7JCffJw5aS9wlURt5tvaH2RSeXyiAhAkU4+NSFLPSz7W+cRAmynT1ATkO10o8GBxu/ot6bdPuH…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0zYQkjxfEnho95aooUS5h+P7Epv6J2ZXCqsA0y9TufBSuF5PQwS8GMB4eOgbPmwDnEr0i/lxXHQwtL…

selectors probed

Certificate (current)

Amazon RSA 2048 M01

from 2025-11-05 to 2026-12-05

Expires in 187 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.stobag.com/global/en/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: no-referrer
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: default-src 'self' *.googletagmanager.com; script-src 'unsafe-eval' 'unsafe-inline' 'report-sample' 'self' ct.pinterest.com bat.bing.com cdn.cookielaw.org snap.licdn.com *.googleadservices.com googleads.g.doubleclick.net *.stobag.com app.friendlyanalytics.ch plausible.io www.youtube.com *.google-analytics.com *.googletagmanager.com connect.facebook.net *.googleapis.com *.pinimg.com *.adform.net; style-src 'unsafe-inline' 'report-sample' 'self' *.stobag.com *.googleapis.com; object-src 'none'; base-uri 'self' *.stobag.com; connect-src 'self' *.graphassets.com bat.bing.net ct.pinterest.com px.ads.linkedin.com cdn.linkedin.oribi.io pagead2.googlesyndication.com cdn.cookielaw.org googleadservices.com google.ca plausible.io app.friendlyanalytics.ch *.onetrust.com *.google.com *.g.doubleclick.net *.hygraph.com *.execute-api.eu-central-1.amazonaws.com maps.googleapis.com *.stobag.com *.s3.eu-central-1.amazonaws.com; font-src 'self' insights.stobag.com data: fonts.gstatic.com; frame-sr
strict-transport-security: max-age=31536000; preload

Links to (4)

Linked from (1)

kothes.com×1