cerfrance.fr
HTML metadata
Technology
- Server
- Apache
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (2)
- www.google.com×1
- www.googletagmanager.com×1
Social
Registration
- Registrar
- OVH
- Created
- 2008-08-13
- Expires
- 2027-02-09 264 days left
- Updated
- 2026-03-31
- Name servers
-
- dns102.ovh.net
- ns102.ovh.net
DNS records live
- NS
-
- dns102.ovh.net
- ns102.ovh.net
- MX
-
- 10 mx1.resotic.fr
- 20 mx2.resotic.fr
- TXT
-
Show 15 TXT records
W2S9Y075rRmzQ+JYT17uXUwnTms=vqGsj0awrwah1/lNoknccYz/IxfQ9HwOafpnWadHFSk=8CDAE6DD7F036D313D860AE20347D4558E5ADAB0_7jay4ydtzgtzmzmk6o78ex043pbh079rDx4rAO+SSUHIyoN0P/EqAPp+9U=_ltxy0fyn31gwy4kpvjhz5o6949yw6jgqmGJBZrDPMUfPAaDmNumqtMrXMc=oQB72ZfDf6cuiRN9dPIcB53UWz5hZUwS/moizs6v+lQ=Vt6a9REpbDJJz328+YNjdoa/W74=q0dw3r1rxxjzblv981g3pcnjgpggzk44sIW6ylNW+4eTAw3Xg+1c2DYkWmE=56f1ab3dafec9951a83224dd4f105336.txti0/pBEPW1dGMQ/L3j287jU3/+9s=aGawDw60aDRe7GZ6o/Ui2owoU3A=TDpXUkA/Jay/d3GPeUqBlI1Szzg=
- Verified for
-
- Brevo
- DocuSign
- Microsoft 365
Email authentication partial
- SPF
-
v=spf1 include:spf.protection.outlook.com include:spf4.sbr-master.net include:sparkpostmail.com include:spf.mailjet.com include:spf.brevo.com include:sendgrid.net a:mx-out.resotic.fr -allstrict (-all) - DMARC
-
v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.compolicy: none (monitoring only) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2+o2FNPXN7a9UJs7KeKQ+JPS5ANEvojpa8c88PRumKrVbZCzYqJ1jL25zdVvHteu6gM3KlTzq+kLi4… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzc6hfbGywYebD6NU6U2/gAT0U65P9jP7A1n46HcYb2CZpZafz1lypMXDoTz4Xmb6QV4bEnFMjTBKOl… - mail:
k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed - selector1:
Certificate (current)
R13
Expires in 33 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP uses wildcard sources
- weak frame protection
Header values
- referrer-policy
no-referrer, strict-origin-when-cross-origin- x-frame-options
DENY, DENY- permissions-policy
camera=(), display-capture=(), fullscreen=(), geolocation=(self), microphone=(), web-share=()- x-content-type-options
nosniff- content-security-policy
default-src 'self' data: https://fonts.googleapis.com https://fonts.gstatic.com; connect-src 'self' *.hotjar.com *.hotjar.io wss://*.hotjar.com *.cookieyes.com cdn-cookieyes.com *.googleapis.com www.google.com *.analytics.google.com matomo.cerfrance.fr stats.g.doubleclick.net *.google-analytics.com *.tawk.to wss://*.tawk.to pagead2.googlesyndication.com www.googletagmanager.com www.googleadservices.com www.google.fr googleads.g.doubleclick.net static.partoo.co api.partoo.co; font-src 'self' data: fonts.googleapis.com fonts.gstatic.com *.tawk.to unpkg.com; frame-ancestors 'self' www.google.com; frame-src 'self' www.youtube.com www.youtube-nocookie.com www.google.com *.businesscomm.fr/ www.googletagmanager.com com.cerfrance.fr semantics-chat.wikit.ai; img-src 'self' com.cerfrance.fr *.hotjar.com cdn-cookieyes.com data: www.google.com www.google.fr storage.gra.cloud.ovh.net www.googletagmanager.com pagead2.googlesyndication.com lafabrique.cerfrance.fr maps.gstatic.com maps.googleapis.com- strict-transport-security
max-age=31536000; includeSubDomains; preload