fonction-publique.gouv.fr
HTML metadata
Technology
- Server
- nginx
- CMS
- Drupal
Social
Registration
- Registrar
- ORDIPAT
- Created
- 1997-01-28
- Expires
- 2027-02-03 258 days left
- Updated
- 2025-11-19
- Name servers
-
- ns2.as16101.net
- ns3.as16101.net
- ns51.as16101.net
- ns52.as16101.net
- ns53.as16101.net
DNS records live
- NS
-
- ns2.as16101.net
- ns3.as16101.net
- ns51.as16101.net
- ns52.as16101.net
- ns53.as16101.net
- MX
-
- 10 relaismsg.finances.gouv.fr
- TXT
-
linkedin-site-verification=8bedbe65-487d-42f5-903d-8cd955b3b47b
- Verified for
-
Email authentication strong
- SPF
-
v=spf1 redirect=_spf.prd.finances.gouv.fr -allstrict (-all) - DMARC
-
v=DMARC1 ; p=reject ; sp=quarantine ; rua=mailto:dmarc-rua@fonction-publique.gouv.fr ; ruf=mailto:dmarc-ruf@fonction-publique.gouv.fr ; fo=1 ; adkim=s ; aspf=spolicy: reject (enforced) · sp=quarantine - DKIM
- no key found at common selectors
Certificate (current)
Gandi RSA Domain Validation Secure Server CA 3
Expires in 158 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
same-origin- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src https: 'unsafe-eval' 'unsafe-inline'; object-src https: ; child-src https: platform.twitter.com; img-src https: data:; font-src 'self' data: https:;frame-ancestors 'self' https://*.safire.fonction-publique.gouv.fr;- strict-transport-security
max-age=31536000; includeSubDomains; preload