collectif-cosme.coop
collectif-cosme.coop
HTML metadata
Technology
- Server
- o2switch-PowerBoost-v3
- CMS
- WordPress
- Social widgets
-
- Vimeo Embed
Third-party hosts loaded (2)
- player.vimeo.com×2
- gmpg.org×1
Social
Registration
- Registrar
- Gandi SAS
- Created
- 2023-03-13
- Expires
- 2027-03-13 296 days left
- Updated
- 2026-04-27
- Name servers
-
- ns1.o2switch.net
- ns2.o2switch.net
DNS records live
- NS
-
- ns1.o2switch.net
- ns2.o2switch.net
- MX
-
- 0 collectif-cosme.coop
Email authentication partial
- SPF
-
v=spf1 ip4:109.234.161.208 +a +mx +include:spf.jabatus.fr ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none;policy: none (monitoring only) - DKIM
-
- default:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6g5mUkfBXfE/1Exzum71ljevVrWbPyTvGsMctgXAwojUiJMcW4zwqvOyaEaMoornX1BoFnbPITNnG+…
selectors probed - default:
Certificate (current)
R12
Expires in 30 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
script-src 'self' maps.gstatic.com maps.googleapis.com *.google.com maps.google.com s7.addthis.com m.addthis.com m.addthisedge.com api-public.addthis.com connect.facebook.net platform.foursquare.com platform.twitter.com https: data: 'unsafe-inline' 'unsafe-eval'- strict-transport-security
max-age=31536000; includeSubdomains; preload