ecac-ceac.org

HTML metadata

Technology

Server

o2switch-PowerBoost-v3

CMS

Joomla

Social widgets

• Twitter Widget

Third-party hosts loaded (3)

• platform.twitter.com×1
• www.google.com×1
• www.gstatic.com×1

Social

• twitter
• linkedin

DNS records live

NS

• ns-103-b.gandi.net
• ns-119-c.gandi.net
• ns-121-a.gandi.net

MX

• 10 ecacceac-org01b.mail.protection.outlook.com

Verified for

• Brevo
• Google

Email authentication partial

SPF

v=spf1 mx ip4:109.234.161.225 a:ovh.ecac-ceac.org a:orange.ecac-ceac.org a:www.ecac-ceac.org a:ecac-ceac.org include:spf.sendinblue.com include:_spf.meltwater.com include:spf.dynect.net include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1;p=none;sp=none;adkim=r;aspf=r;pct=100;fo=0;rf=afrf;ri=86400;rua=mailto:dmarc@mailinblue.com!10m;ruf=mailto:dmarc@mailinblue.com!10m

policy: none (monitoring only) · sp=none

DKIM

• default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsL00hXP/+pdDg3R0OAsAnqyAH5H5RqbnUzQpRwqsqqJDjPpS72sZ5OYcZPRy95wiplAv6IXZpcoe3S…
• mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 55/100 Checked live page: https://ecac-ceac.org/

present

• x-frame-options
• x-content-type-options
• referrer-policy

findings

• missing HSTS
• missing Content Security Policy
• missing Permissions Policy

Links to (3)

• twitter.com×1
• t.co×1
• linkedin.com×1

Linked from (1)

• gdf.de×1