cdc-habitat.fr

HTML metadata

Title: CDC Habitat : trouver un logement adapté à chaque situation - CDC Habitat
Description: Louer ou acheter en France avec CDC Habitat, filiale immobilière de la Caisse des dépôts. Logements sociaux, intermédiaires ou libres, en ligne ou en agence.
Language: fr
Canonical: https://www.cdc-habitat.fr

Open Graph

url: https://www.cdc-habitat.fr
title: CDC Habitat : trouver un logement adapté à chaque situation - C
site name: cdc-habitat.fr
description: Louer ou acheter en France avec CDC Habitat, filiale immobilière de la Caisse des dépôts. Logements sociaux, intermédiaires ou libres, en ligne ou en agence.

Technology

Server: Caddy

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (4)

fonts.googleapis.com×2
www.facebook.com×2
tag.aticdn.net×1
www.googletagmanager.com×1

Social

Contact

Address: 33 AV PIERRE MENDES FRANCE 75013 PARIS

Registration

Registrar

NAMESHIELD

Created

2013-05-23

Expires

2026-05-23 2 days left

Updated

2025-07-02

Name servers

dns.caissedesdepots.fr
dns2.caissedesdepots.fr
dns3.caissedesdepots.fr
dns5.caissedesdepots.fr
nsa.perf1.fr
nsb.perf1.com
nsc.perf1.com

DNS records live

NS

dns.caissedesdepots.fr
dns2.caissedesdepots.fr
dns3.caissedesdepots.fr
dns5.caissedesdepots.fr
nsa.perf1.fr
nsb.perf1.com
nsc.perf1.com

MX

10 mxa-00088d01.gslb.pphosted.com
10 mxb-00088d01.gslb.pphosted.com

TXT

MS=6CDA822838588C1105213E22564B3A499F561457
cloudflare_dashboard_sso=3333b0440ac3361ff18faea793ee317c
yxhYveqZsKvA70uQs0kmsmoTwnWOB7FvS8uNcFSf/n1Hzu3/gevbYbl8toMzpT1P/RYrqDhviNqNt7xtRrfSLg==

Verified for

Apple
Cisco
DocuSign
GlobalSign
Google

Email authentication strong

SPF

v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com;

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArENIUh1+fOm2hGoX7kn8FkOsU5AmRIZqtOoM1tukoRYYYr/tUZLJSvMuUnslRA7oRks65iRpukfbCh…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy5sFzyEcCmPbf+/JjcFm82X3LnWx4JjhVoDODBdb+pTroL8O58uxy2n21qGEJ7dR3DCJ0YDbogiwF6…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2025-12-04 to 2027-01-04

Expires in 228 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://cdc-habitat.fr/

present

content-security-policy
x-frame-options
x-content-type-options

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' *.cdc-habitat.fr cdc-habitat.fr cdchabitat.cm.fairandsmart.com *.aticdn.net *.axept.io *.googlesyndication.com *.google-analytics.com cdnjs.cloudflare.com google.com *.google.com *.google.fr *.googleapis.com *.mgtmod01.com *.magnetis.io *.modulecall.fr sc-static.net *.facebook.net *.snapchat.com *.doubleclick.net *.gstatic.com *.alentoor.fr *.googletagmanager.com *.immodvisor.com *.xiti.com *.calendoc.com *.facil-iti.app *.facil-iti.com *.doyoudreamup.com *.cookiebot.com youtu.be *.youtube.com *.infobat3d-data02.com livetour.istaging.com *.ricoh360.com *.insidemaps.com *.matterport.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' *.cdc-habitat.fr cdc-habitat.fr *.axept.io unpkg.com cdnjs.cloudflare.com *.alentoor.fr *.facil-iti.app *.facil-iti.com sc-static.net *.facebook.net *.snapchat.com *.doyoudreamup.com *.immodvisor.com *.aticdn.net *.aticdn.net *.doubleclick.net *.google.com *.google.fr *.googleapis.com *.googletagmanager.com *.mgtmod01.com