indexo.dev

zbsa.ch

.ch crawl

First seen 2026-06-01 · Last seen 2026-06-01 · ok HTTP/1.1 200 517 ms crawled 2026-06-02

CH · 194.40.145.200 · AS206891 Kanton Luzern, Dienststelle Informatik

Reputation 100/100

Classifying

HTML metadata

Title
ZBSA
Language
de

Technology

Server
Apache

Contact

Phone
Address
Bundesplatz 14, Postfach, 6002, Luzern, CH

DNS records live

NS
  • ns1.lu.ch
  • ns1.sunrise.ch
  • ns2.lu.ch
MX
  • 10 mx.lu.ch
TXT
Show 4 TXT records
  • hvf6pv6xhb8p3514ldrfqqtvdzf8r0c8
  • QuoVadis=692daeed-d418-4871-bfdc-7ee49f6aee77
  • swisssign-check=hnXsXzBO_Jr-zVlAKkBOs7kP-7o
  • 7n21jf3hc3whjjxc8m67p6txzjyjxccr

Email authentication strong

SPF
v=spf1 a mx ip4:193.246.95.100 ip4:193.246.95.101 ip4:193.246.95.120 ip4:193.246.95.121 ip4:212.71.124.231 ip4:212.71.124.232 -all
strict (-all)
DMARC
v=DMARC1;p=quarantine;ruf=mailto:postmaster@zbsa.ch;fo=1;
policy: quarantine
DKIM
  • dkim: k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAySIkEB4ORRjs8NrN72JaxroDRL6scO+FEptBaNLkjy12xPfDIiS3OsQS/eH8dnqBkomfVwSLRYg2qN+kSwHCIXc…
selectors probed

Certificate (current)

R12
from 2026-05-17 to 2026-08-15
Expires in 73 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://zbsa.ch/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
same-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(self), ambient-light-sensor=(self), autoplay=(self), camera=(self), display-capture=(self), document-domain=(self), encrypted-media=(self), fullscreen=(self), geolocation=(self), gyroscope=(self), magnetometer=(self), microphone=(self), midi=(self), payment=(self), usb=(self), xr-spatial-tracking=(self)
x-content-type-options
nosniff
content-security-policy
frame-ancestors *.lu.ch schulemeierskappel.sharepoint.com; script-src 'self' *.lu.ch luzern.web-analytics.ch unpkg.com *.googleapis.com *.cloudflare.com *.bfs.admin.ch www.youtube.com platform.twitter.com cdn.syndication.twimg.com s.ytimg.com chat.aiaibot.com *.unblu.com unblu.cloud www.publicjobs.ch translate.google.com *.refline.ch *.collectaonline.ch 'unsafe-inline' 'unsafe-eval' blob:;
strict-transport-security
max-age=31536000

Links to (2)

Linked from (1)