e-gloo.eu
HTML metadata
Technology
- Server
- Apache
- Fonts
-
- Google Fonts
Third-party hosts loaded (2)
- fonts.googleapis.com×1
- www.gritchen-affinity.com×1
DNS records live
- NS
-
- dns102.ovh.net
- ns102.ovh.net
- MX
-
- 1 redirect.ovh.net
Email authentication weak
- SPF
-
v=spf1 include:mx.ovh.com +a +mx -allstrict (-all) - DMARC
- not published
- DKIM
-
- default:
p=MHwwDQYJKoZIhvcNAQEBBQADawAwaAJhANRtSAhWw8QhiWeqB0n7Zq/0hT0kMPFvYvStm5D5yn6VZAYiKSt6QV9H20f314up4GTBSPTV3VlU6LJ7CkvYYjU59jeZyEyHbn65y+QNqa…
selectors probed - default:
Certificate (current)
E7
Expires in 56 days
HTTP security headers
- present
-
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
same-origin- x-frame-options
sameorigin- x-content-type-options
nosniff- content-security-policy
object-src 'self'; script-src *.dynamo.one *.gritchen.fr *.demo.declare.fr *.penni-connect.io www.clarity.ms client.crisp.chat www.gritchen-affinity.com *.adverline.com img.metaffiliation.com cdn.chatbot.com ajax.googleapis.com *.pinterest.com connect.facebook.net 'self' *.addthisedge.com graph.facebook.com *.addthis.com maps.google.com maps.googleapis.com chat.gritchen-affinity.com www.googletagmanager.com *.gstatic.com www.google-analytics.com www.google.com www.googleadservices.com googleads.g.doubleclick.net *.microsoft.com *.jquery.com 'unsafe-inline' 'unsafe-eval'; font-src data: netdna.bootstrapcdn.com static2.sharepointonline.com client.crisp.chat fonts.gstatic.com 'self' fonts.googleapis.com use.fontawesome.com ; img-src data: *.gritchen-affinity.com client.crisp.chat images.ctfassets.net image.crisp.chat action.metaffiliation.com maps.wikimedia.org maps.google.com *.gstatic.com secure.gravatar.com stats.g.doubleclick.net www.google.fr www.google.com 'self' *.pinterest.co