esante.gouv.fr

HTML metadata

Title: La transformation numérique de notre système de santé commence ici, pour vous et avec vous ! | Agence du Numérique en Santé
Language: fr
Canonical: https://esante.gouv.fr/

Open Graph

url: https://esante.gouv.fr/accueil
title: La transformation numérique de notre système de santé commence ici, pour vous et avec vous !
site name: Agence du Numérique en Santé

Technology

Server: Apache
CMS: Drupal

Analytics

Google Tag Manager

Fonts

Adobe Fonts

Third-party hosts loaded (3)

cdnjs.cloudflare.com×1
use.typekit.net×1
www.googletagmanager.com×1

Social

Contact

Address: Rue d'Oradour-sur-Glane75015

Registration

Registrar

GANDI

Created

2010-02-08

Expires

2032-11-27 2382 days left

Updated

2026-04-20

Name servers

ns-195-c.gandi.net
ns-201-b.gandi.net
ns-50-a.gandi.net

DNS records live

NS

ns-195-c.gandi.net
ns-201-b.gandi.net
ns-50-a.gandi.net

MX

0 esante-gouv-fr.mail.protection.outlook.com

TXT

Show 5 TXT records

m2F4OxLyk0TOdfj/vyZvyyRXp7E=
google-site-verification:G70iado1Q_LX8-yfcs1xUvOIxkb-X7MKbVLj54Y5qxc
yie6gfKIgsuqA9P6RFhRmTwLwcQ=
KTY2crL3Vt5krx6V+Xhw37F3JFs=
atlassian-sending-domain-verification=25128628-98ef-4cc0-9f6c-2ff28fc527cb

Verified for

Anthropic
Atlassian
GlobalSign
Google
Microsoft 365

Email authentication strong

SPF

v=spf1 ip4:80.78.2.152 ip4:80.78.2.133 include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine

policy: quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0O4t//J1uHgFCdWkN67OInGCKB02A/DnmHOOZeulQTQRW/Ba5HVlcvPhu5+Mbdmji/5CUouoccLN4w…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FL+YHGs6EAXO956KsYojPb64/Rf6G0qk9TcRlBnsITBZK003Wyl2i279VoO3jHyx+gxFaLf3tc03k…

selectors probed

Certificate (current)

GlobalSign Atlas R3 DV TLS CA 2026 Q1

from 2026-03-31 to 2026-06-29

Expires in 39 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://esante.gouv.fr/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
missing Permissions Policy

Header values

referrer-policy: no-referrer
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' 'unsafe-inline' www.youtube-nocookie.com www.google-analytics.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' code.jquery.com stackpath.bootstrapcdn.com cdn.jsdelivr.net www.googletagmanager.com tagmanager.google.com tag.aticdn.net www.gstatic.com cdnjs.cloudflare.com js/intlTelInput.js www.google.com static.hotjar.com script.hotjar.com static.hotjar.com/c/hotjar-3253247.js script.hotjar.com/modules.bd615e91f206bba6c106.js cdn.plot.ly unpkg.com/bootstrap-table@1.22.3/dist/bootstrap-table.min.js platform.twitter.com run.pstmn.io/button.js; object-src 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline' use.typekit.net stackpath.bootstrapcdn.com www.googletagmanager.com cdn.jsdelivr.net maxcdn.bootstrapcdn.com p.typekit.net fonts.googleapis.com tagmanager.google.com ton.twimg.com www.gstatic.com/charts/ css/intlTelInput.css static.hotjar.com script.hotjar.com cdnjs.cloudflare.com static.piste.gouv.fr unpkg.com/bootstrap-table@1.22.3/dist/bootstrap-table.min.cs
strict-transport-security: max-age=31536000; preload

Links to (8)

Linked from (14)

vidalfrance.com×3
witik.io×3
mssante.fr×2
fesp.fr×2
usmy.fr×2
redalertlabs.com×2
chambre-nationale-praticiens-sante-durable.fr×2
ximi.fr×2
ma-sauvegarde.com×2
kalanda.net×1
urpsinfirmiers-occitanie.fr×1
juxta.fr×1
viatrajectoire.fr×1
lestudiotech.com×1