indexo.dev

bassin-pont-a-mousson.fr

.fr crawl

First seen 2026-05-08 · Last seen 2026-05-08 · ok HTTP/1.1 200 2688 ms crawled 2026-05-14

Reputation 100/100

Classifying

HTML metadata

Language
fr

Technology

Server
Apache
CMS
Nuxt

Registration

Registrar
OVH
Created
2013-10-18
Expires
2026-10-18 150 days left
Updated
2025-08-04
Name servers
  • ns1.kenua.net
  • ns2.kenua.net
  • ns3.kenua.net
  • ns4.kenua.net

DNS records live

NS
  • ns1.kenua.net
  • ns2.kenua.net
  • ns3.kenua.net
  • ns4.kenua.net
TXT
  • v=DKIM1; k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPS6YUr0E1ZbPDFgU0FLhFXj3tzFyQ/ZiBjHQIxUVyhf61arThmLA0s1KBDEG5d+uI4OVw0Tsur/5CyLowZzWqkPMiz/WJfn5har2bYXxUaKPM8knAZYnBQSmdgG8iJZHK6L17Hpfv548sGqtWPciqHuHYQU1p0MbHknBnNKF1IwIDAQAB
Verified for
  • Google

Email authentication no MX

SPF
v=spf1 a mx include:spf.kenua.com ip4:213.32.80.183 ip4:37.187.149.231 ip4:62.210.190.26 ip4:62.210.14.104 a:mail1.illicoweb.com a:sitlor.fr a:app.avizi.fr ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

E8
from 2026-04-03 to 2026-07-02
Expires in 42 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.bassin-pont-a-mousson.fr/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
Header values
referrer-policy
origin
x-frame-options
SAMEORIGIN, SAMEORIGIN
permissions-policy
camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()
x-content-type-options
nosniff
content-security-policy
base-uri 'none'; font-src 'self' https: data:; form-action 'self'; frame-ancestors 'self'; img-src 'self' data: *.cimeos.dev *.preprod.cimeos.com *.bassin-pont-a-mousson.fr *.geopf.fr img.youtube.com *.vimeocdn.com *.youtube.com *.youtube-nocookie.com *.vimeo.com *.hcaptcha.com *.facebook.com *.fbcdn.net *.instagram.com *.cdninstagram.com *.preprod.cimeos.com; object-src 'none'; script-src-attr 'self' *.cimeos.dev 'unsafe-inline' *.bassin-pont-a-mousson.fr; style-src 'self' https: 'unsafe-inline'; script-src 'self' *.cimeos.dev *.bassin-pont-a-mousson.fr 'unsafe-eval'; upgrade-insecure-requests; connect-src 'self' *.cimeos.dev *.preprod.cimeos.com *.bassin-pont-a-mousson.fr *.geopf.fr *.hcaptcha.com; default-src 'self' *.cimeos.dev *.preprod.cimeos.com *.bassin-pont-a-mousson.fr; frame-src *.youtube.com *.youtube-nocookie.com *.vimeo.com *.hcaptcha.com *.marches-publics.info *.guidedutri.fr; script-src-elem 'self' data: *.cimeos.dev *.bassin-pont-a-mousson.fr hcaptcha.com 'unsafe-inlin
strict-transport-security
max-age=16000000; includeSubDomains; preload;
cross-origin-opener-policy
same-origin
cross-origin-embedder-policy
unsafe-none
cross-origin-resource-policy
same-origin

Linked from (1)