aliapur.fr
HTML metadata
Technology
- Server
- Apache
- Analytics
-
- Google Tag Manager
- Fonts
-
- Font Awesome
- Google Fonts
- Social widgets
-
- YouTube Embed
Third-party hosts loaded (8)
- cdn.jsdelivr.net×6
- cdnjs.cloudflare.com×6
- www.googletagmanager.com×3
- fonts.googleapis.com×1
- maps.googleapis.com×1
- use.fontawesome.com×1
- www.google.com×1
- www.youtube-nocookie.com×1
Social
Contact
- Phone
Registration
- Registrar
- GANDI
- Created
- 2002-02-26
- Expires
- 2028-05-04 714 days left
- Updated
- 2025-09-28
- Name servers
-
- ns-13-a.gandi.net
- ns-7-c.gandi.net
- ns-73-b.gandi.net
DNS records live
- NS
-
- ns-13-a.gandi.net
- ns-7-c.gandi.net
- ns-73-b.gandi.net
- MX
-
- 5 mx-mibc-fr-03.mailinblack.com
- TXT
-
linkedin-site-verification=fdda530b-8e01-4d8d-85aa-ffc2d1c4d1f3_vr21dzad1msg1ra30317z0emvwgzniu
- Verified for
-
- Anthropic
- Brevo
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 include:spf.protection.outlook.com include:sendgrid.net include:spf.oximailing.com include:spf.mailinblack.com include:mail.zendesk.com include:spf.brevo.com ip4:185.92.37.57 ip4:149.202.114.116 ip4:77.158.211.178 ip4:77.129.12.176 ip4:217.182.111.80 -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; pct=100; rua=mailto:dmarcreports@lovable.devpolicy: quarantine - DKIM
-
Show 4 DKIM selectors
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDgcIk8rnvVLeX5wjG3GB3eVjjoHKASj37A3B05TtyDuVPZAsaA04h/cg45Q7Zhl/R8xzgXdM8j6aBRJ9At4Z… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApbroDj1T37QKEOqlBAVjZIrYlAD4LXqqLIeExm/cvkNpMNq76bOVE2ARWY01dqP3Ts5bLoQh+yNDOQ… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6TdMQucSHwBrzegd9s9n7Iefp3BYvJEsloaQnR4m6Qq1vitynjNZ1FYNz1eWa4j279UvS/FhAbc1NcCg1M… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1KSwS+i9/cRcLpX3o6FirO7QZLPfcUyPAvPZiFoUE5/Cx8sIWeJSEYUBmsKm9b33rxIUkllie/ZxKBsjrv…
selectors probed - selector1:
Certificate (current)
RapidSSL TLS RSA CA G1
Expires in 192 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
same-origin- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self'; connect-src 'self' https://*.stonly.com https://stonly.com https://static.cloudflareinsights.com https://stats.g.doubleclick.net https://*.forms.app https://*.google.com https://*.google-analytics.com https://maps.googleapis.com; font-src 'self' https://cdn.jsdelivr.net https://fonts.gstatic.com https://use.fontawesome.com https://maps.googleapis.com/maps/api/mapsjs/gen; img-src 'self' https://img.youtube.com https://www.youtube-nocookie.com https://*.google-analytics.com https://maps.googleapis.com https://www.google.com https://www.google.fr https://cdn.jsdelivr.net https://www.googletagmanager.com; script-src 'self' 'unsafe-inline' https://stonly.com https://static.cloudflareinsights.com https://cdn.jsdelivr.net https://cdnjs.cloudflare.com https://code.jquery.com https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1018459263/ https://maps.googleapis.com https://maxcdn.bootstrapcdn.com https://www.google-analytics.com https://www.google.com https://w- strict-transport-security
max-age=31536000, includeSubDomains