banette.fr

.fr crawl

First seen 2026-04-15 · Last seen 2026-05-11 · ok HTTP/1.1 200 2551 ms crawled 2026-05-11

FR · 45.32.148.173 · AS20473 The Constant Company, LLC

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Banette : Artisan Boulanger et Pain de Tradition dans toute la France
Description: Découvrez l'univers Banette : des pains artisanaux pétris avec passion par nos 1 500 boulangers. Savourez la tradition, la qualité de nos farines françaises et trouvez votre boulangerie !
Language: fr

Technology

Server: nginx
CMS: Gatsby

Third-party hosts loaded (1)

cdn.brevo.com×1

Social

Contact

Phone

(255 255 255

Registration

Registrar

AMEN / Agence des Médias Numériques

Created

1999-07-11

Expires

2027-03-24 307 days left

Updated

2026-04-30

Name servers

ns1.amenworld.com
ns2.amenworld.com

DNS records live

NS

ns1.amenworld.com
ns2.amenworld.com

MX

10 banette-fr.mail.protection.outlook.com
20 mx.fr.oleane.com

TXT

v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400

Verified for

Brevo
GlobalSign
Google

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com include:spf.sendinblue.com mx -all

strict (-all)

DMARC

v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400

policy: none (monitoring only) · sp=none

DKIM

mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

R13

from 2026-04-16 to 2026-07-15

Expires in 55 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 55/100 Checked live page: https://www.banette.fr/

present

content-security-policy
x-frame-options
x-content-type-options

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com fonts.googleapis.com *.googleapis.com data: * https://fonts.gstatic.com maxcdn.bootstrapcdn.com https://cdnjs.cloudflare.com 'self' data: data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * 'self' 'unsafe-inline'; frame-ancestors www.gstatic.com * 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardina

Links to (6)

Linked from (1)

nicotmeunerie.fr×2