indexo.dev

federationdesdiabetiques.org

.org crawl

First seen 2026-05-08 · Last seen 2026-05-15 · ok HTTP/1.1 200 10714 ms crawled 2026-05-15

FR · 176.31.249.115 · AS16276 OVH SAS

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Fédération Française des Diabétiques
Description
Les réponses à mes questions sur le diabète
Language
fr

Open Graph

url
https://www.federationdesdiabetiques.org/
title
Fédération Française des Diabétiques
description
Les réponses à mes questions sur le diabète

Technology

Server
Apache
CMS
Joomla
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • cdn.benevolt.fr×1
  • www.google.com×1
  • www.googletagmanager.com×1

Social

Contact

Phone
Address
st une association régie par la loi du 1er juillet 1901

Registration

Registrar
OVH sas
Created
2015-09-22
Expires
2026-09-22 124 days left
Updated
2025-11-06
Name servers
  • dns200.anycast.me
  • ns200.anycast.me

DNS records live

NS
  • dns200.anycast.me
  • ns200.anycast.me
MX
  • 0 federationdesdiabetiques-org.mail.protection.outlook.com
TXT
  • zPtfxKxUFNp10PnkZwgM5TmpoXg=
Verified for
  • Google
  • Microsoft 365

Email authentication partial

SPF
v=spf1 mx ip4:176.31.249.115 ip4:146.59.155.154 ip4:151.80.177.179 ip4:194.51.172.0/24 include:spf.protection.outlook.com include:spf.axalone.com include:spf.tipimail.com include:spf.mailjet.com -all
strict (-all)
DMARC
v=DMARC1; p=none
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-09-29 to 2026-10-05
Expires in 137 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.federationdesdiabetiques.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' https://cdn.benevolt.fr/ https://apicivique.s3.eu-west-3.amazonaws.com https://mission.api-engagement.beta.gouv.fr https://www.youtube.com http://contre-le-diabete.rouge-le-fil.com/ https://*.federationdesdiabetiques.org/ http://www.contrelediabete.fr/ https://www.dailymotion.com/ https://player.vimeo.com/ https://*.google.com/ https://www.gstatic.com/ https://www.googletagmanager.com/ https://cdn.cookielaw.org/ https://maps.googleapis.com/ https://fonts.googleapis.com/ https://fonts.gstatic.com https://maps.gstatic.com/ https://www.google-analytics.com/ https://www.googleadservices.com/ https://secure.gravatar.com https://geo.dailymotion.com/ https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.5/dist/umd/ https://contrelediabete.federationdesdiabetiques.org/ https://www.foodwatch.org
strict-transport-security
max-age=15768000

Links to (5)

Linked from (1)