indexo.dev

suisse-epolice.ch

.ch crawl

First seen 2026-05-21 · Last seen 2026-05-31 · ok HTTP/1.1 200 1586 ms crawled 2026-05-27

CH · 159.144.52.20 · AS34578 Bedag Informatik AG

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Suisse ePolice
Language
de

Technology

Server
Apache

Third-party hosts loaded (1)

  • maps.googleapis.com×1

DNS records live

NS
  • ns1.ci-bedag.ch
  • ns2.ci-bedag.ch
MX
  • 10 mx01.ci-bedag.ch
  • 10 mx02.ci-bedag.ch
TXT
  • 0pl3f000n45c0601x10x1ms1x871dbr7
  • swisssign-check=W4K47JEnHIqb3ZRAqxJkSjhk3Nw

Email authentication partial

SPF
v=spf1 include:spf.ci-bedag.ch include:spf.secemail.ch ip4:159.144.36.114 ip4:159.144.218.139 -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc@bedag.ch; ruf=mailto:dmarc-ruf@bedag.ch; fo=1;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

SwissSign RSA TLS EV ICA 2022 - 1
from 2025-08-08 to 2026-08-08
Expires in 68 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.suisse-epolice.ch/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
base-uri 'self'; default-src 'none'; script-src 'self' https://maps.googleapis.com/ 'nonce-a061410ee2ea12a208290e2431c835ce'; style-src 'self' https://fonts.googleapis.com/ 'unsafe-inline'; img-src 'self' https://maps.googleapis.com/ https://maps.gstatic.com/ data:; font-src 'self' https://fonts.gstatic.com/; manifest-src 'self' 'nonce-a061410ee2ea12a208290e2431c835ce'; connect-src 'self' https://maps.googleapis.com/ https://sso.suisse-epolice.ch; frame-src 'self' https://sso.suisse-epolice.ch; frame-ancestors 'self'

Linked from (5)