elior-sante.fr

.fr crawl

First seen 2026-04-13 · Last seen 2026-05-07 · ok HTTP/1.1 200 15393 ms crawled 2026-05-07

FR · 185.236.226.55 · AS197696 Evolix SARL

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: Elior Santé, une ambition : prendre soin | Elior Santé
Description: Elior Santé accompagne les établissements de santé dans le bionettoyage, la restauration, et les services hôteliers, au service de la qualité des soins du confort des résidents et des patients.
Language: fr
Generator: Drupal 10 (https://www.drupal.org)
Canonical: https://www.elior-sante.fr/

Technology

Server: Apache
CMS: Drupal

Analytics

Google Tag Manager

Third-party hosts loaded (3)

cdn.jsdelivr.net×1
www.googletagmanager.com×1
www.youtube.com×1

Social

Registration

Registrar

NAMESHIELD

Created

2025-06-18

Expires

2027-06-18 393 days left

Updated

2025-11-25

Name servers

nsa.perf1.fr
nsb.perf1.com
nsc.perf1.com

DNS records live

NS

nsa.perf1.fr
nsb.perf1.com
nsc.perf1.com

MX

10 custmx.cscdns.net

Verified for

Google

Email authentication partial

SPF: not published
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

from 2026-04-21 to 2026-07-20

Expires in 60 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.elior-sante.fr/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
weak content type protection

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(self), microphone=(), camera=(), payment=()
x-content-type-options: nosniff, nosniff
content-security-policy: object-src 'none'; script-src 'self' 'report-sample' 'unsafe-eval' cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdnjs.cloudflare.com https://maps.googleapis.com https://unpkg.com https://www.google.com https://www.youtube.com; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.google-analytics.com https://www.gstatic.com cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdnjs.cloudflare.com https://maps.googleapis.com https://unpkg.com https://www.google.com https://www.youtube.com; style-src 'self' 'report-sample' https://fonts.googleapis.com https://cdn.jsdelivr.net https://cdnjs.cloudflare.com https://unpkg.com; style-src-attr 'self' 'report-sample' 'unsafe-inline'; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdn.jsdelivr.net https://cdnjs.cloudflare.com https://unpkg.com; worker-src 'self'; base-uri 'self'; frame-ancestors 'self'
strict-transport-security: max-age=63072000; preload;

Links to (3)

Linked from (1)

nina-app.com×2