sustainability-days.ch

HTML metadata

Technology

Server

nginx

PHP

8.4.21

Analytics

• Google Tag Manager

Cookie consent

• OneTrust

Third-party hosts loaded (2)

• cdn.cookielaw.org×1
• www.googletagmanager.com×1

Social

• linkedin
• youtube

Contact

Phone

• +41 58 200 20 20

DNS records live

NS

• ns1-05.azure-dns.com
• ns2-05.azure-dns.net
• ns3-05.azure-dns.org
• ns4-05.azure-dns.info

MX

• 5 sustainabilitydays-ch03e.mail.protection.outlook.com

TXT

• QuoVadis=19fec3c6-2db1-4793-972d-13ceef449578

Verified for

• Microsoft 365

Email authentication partial

SPF

v=spf1 a mx include:amazonses.com include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc-reports@mch-group.com

policy: none (monitoring only)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5kE6CMxl+uX9OBuh2phK3B1yam9RyeZTmwbUTFwbDuodzuYs5MBjYRtiBsT0KIm8Df86+k9eabin/5…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA50vXkDtxoquGOvXZ22vM5fuGACiPSB9fr/8lLY1C3Cq0M1VFwbhfixWB0wRlq+H4I2WPVOEVuEBeWC/JPL…
• s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Db0ljM+lb25eSs20Z+ADivP2lXN6cHBGVF9FGIlACdenvdptLDodznjlyw9VLb/Ha8kI6JKhjrCOFoKvs…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.sustainability-days.ch/en

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options
• referrer-policy
• permissions-policy

findings

• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources

Links to (3)

• youtube.com×1
• mch-group.com×1
• linkedin.com×1

Linked from (2)

• sun21.ch×1
• thomas-hug.ch×1