dacia.de
HTML metadata
Technology
- CDN
- Amazon CloudFront
- Server
- nginx
- Analytics
-
- Google Analytics
- Google Tag Manager
Third-party hosts loaded (3)
- cdn.group.renault.com×59
- www.google-analytics.com×1
- www.googletagmanager.com×1
Social
Registration
- Updated
- 2023-02-22
- Name servers
-
- anna.renault.fr.
- xenia.renault.fr.
DNS records live
- NS
-
- anna.renault.fr
- xenia.renault.fr
- MX
-
- 10 mx1.hc1506-8.eu.iphmx.com
- 10 mx2.hc1506-8.eu.iphmx.com
- TXT
-
facebook-domain-verification=a00kwwpkodt1l7sshpakc6xd160esn
Email authentication strong
- SPF
-
v=spf1 a mx ip4:81.20.143.195 include:spfhard.crsend.com include:dac-dos.mehrkanal.net ip4:143.55.239.67 ip4:143.55.239.249 include:spf.mailjet.com exists:%{i}.spf.hc1506-8.eu.iphmx.com -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; pct=100; sp=reject; rua=mailto:8861c14b@inbox.eu.redsift.cloud,mailto:mb2glhd4@ag.dmarcian.eu; ruf=mailto:8861c14b@inbox.eu.redsift.cloud; adkim=r; aspf=r; fo=1; rf=afrf; ri=3600policy: reject (enforced) · sp=reject - DKIM
- no key found at common selectors
Certificate (current)
Amazon RSA 2048 M01
Expires in 263 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- findings
-
- short HSTS max-age
- CSP allows unsafe inline scripts/styles
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
default-src data: 'unsafe-inline' 'unsafe-eval' https:;base-uri 'self';frame-ancestors 'self' ;img-src data: https: blob:;font-src data: https:;media-src https: blob:;connect-src https: wss: http:;script-src data: 'unsafe-inline' 'unsafe-eval' https: blob:;style-src data: 'unsafe-inline' https:;child-src https: data: blob:;form-action https:;object-src 'none';- strict-transport-security
max-age=2592000