wog.ch
wog.ch
HTML metadata
Technology
- jQuery
- 3.6.4
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
Third-party hosts loaded (12)
- fonts.googleapis.com×2
- fonts.gstatic.com×2
- cross.econda-monitor.de×1
- e-payment.postfinance.ch×1
- econda-monitor.de×1
- facebook.com×1
- facebook.net×1
- games.ch×1
- instagram.com×1
- www.google.com×1
- www.googletagmanager.com×1
- youtube.com×1
Social
Contact
- Phone
DNS records live
- NS
-
- ns.hostpoint.ch
- ns2.hostpoint.ch
- ns3.hostpoint.ch
- MX
-
- 10 mx1.mail.hostpoint.ch
- 10 mx2.mail.hostpoint.ch
- TXT
-
MS=D0FE54376D4ED9E0D97FDF6C00AFC85482A76AF3
- Verified for
-
- Atlassian
Email authentication strong
- SPF
-
v=spf1 mx ip4:195.141.66.0/24 include:spf.nl2go.com include:spf.mail.hostpoint.chmissing all - DMARC
-
v=DMARC1; p=quarantine;policy: quarantine - DKIM
- no key found at common selectors
Certificate (current)
Sectigo Public Server Authentication CA EV R36
Expires in 99 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- content-security-policy-report-only
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
camera=(), display-capture=(self), fullscreen=(self), geolocation=(), microphone=(), publickey-credentials-get=(), screen-wake-lock=(), web-share=(self)- x-content-type-options
nosniff- content-security-policy
default-src 'self' https://wog.ch/ https://www.wog.ch/ https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2; base-uri 'self' https://wog.ch/ https://www.wog.ch/; style-src-elem 'self' https://wog.ch/ https://www.wog.ch/ 'unsafe-inline' https://fonts.googleapis.com/; style-src 'self' 'unsafe-inline' https://wog.ch/ https://www.wog.ch/ https://fonts.googleapis.com/; media-src 'self' data: https://wog.ch/ https://wwww.wog.ch/; img-src 'self' https://wog.ch/ https://www.wog.ch/ https://www.games.ch/ https://i.ytimg.com/ data: https://www.paypalobjects.com/ https://t.paypal.com/ https://developer.android.com/ https://files.newsletter2go.com/ https://www.google.com/ https://www.googleadservices.com/ https://adservice.google.com/ https://google.com/ https://www.google.ch https://*.google-analytics.com https://*.googletagmanager.com https://googleads.g.doubleclick.net https://www.econda-monitor.de; script-src-elem 'self' 'unsafe-inline' https://apis.google.com https://wo- strict-transport-security
max-age=31536000; includeSubDomains- content-security-policy-report-only
default-src 'self' https://wog.ch/ https://www.wog.ch/ https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2; base-uri 'self' https://wog.ch/ https://www.wog.ch/; style-src-elem 'self' https://wog.ch/ https://www.wog.ch/ 'unsafe-inline' https://fonts.googleapis.com/; style-src 'self' 'unsafe-inline' https://wog.ch/ https://www.wog.ch/ https://fonts.googleapis.com/; media-src 'self' data: https://wog.ch/ https://wwww.wog.ch/; img-src 'self' https://wog.ch/ https://www.wog.ch/ https://www.games.ch/ https://i.ytimg.com/ data: https://www.paypalobjects.com/ https://t.paypal.com/ https://developer.android.com/ https://files.newsletter2go.com/ https://www.google.com/ https://www.googleadservices.com/ https://adservice.google.com/ https://google.com/ https://www.google.ch https://*.google-analytics.com https://*.googletagmanager.com https://googleads.g.doubleclick.net https://www.econda-monitor.de; script-src-elem 'self' 'unsafe-inline' https://apis.google.com https://wo