fotostudio.io

HTML metadata

Technology

Server

Heroku

Fonts

• Google Fonts

Third-party hosts loaded (3)

• cdn.jsdelivr.net×2
• cdnjs.cloudflare.com×1
• fonts.googleapis.com×1

DNS records live

NS

• ns1.dnsimple.com
• ns2.dnsimple.com
• ns3.dnsimple.com
• ns4.dnsimple.com

MX

• 1 aspmx.l.google.com
• 10 alt3.aspmx.l.google.com
• 10 alt4.aspmx.l.google.com
• 5 alt1.aspmx.l.google.com
• 5 alt2.aspmx.l.google.com

TXT

Show 5 TXT records

• 28RK8MoLEdVe
• ALIAS for fotostudio.io.herokudns.com
• D4jedi7MhA
• heroku-domain-verification=s5ngznigfhfn3miiyny3yin7jr7b04jl/2ko3nzrc0
• hy8L0lo0jtR

Email authentication strong

SPF

v=spf1 include:mailgun.org include:_spf.google.com ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine;

policy: quarantine

DKIM

• google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8RbYGMucu5bJmDM2U1sL47b0LvBvx9be78GsDSFvuDLPzMPB//ca9Dn0YL2h7aR3QBMOUk/2j9CyG8…
• s1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDJXCQ773P5c3HkPKPezL1m4R2tC4EMdWm6AHztHaCBy46Ft8Z3TNwex4MBl9avzOdMMmE6vQ/rfTDe3jR8OAq037suIrd…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.fotostudio.io/

present

• strict-transport-security
• x-frame-options
• x-content-type-options
• referrer-policy

findings

• missing Content Security Policy
• missing Permissions Policy

Linked from (9)

• justineb-photographie.fr×2
• agnescolombo.com×2
• mademoiselleretmonsieurp.com×2
• nadegerousseau-photographe.fr×2
• crisbastiane.com×1
• cecilehumenny-photo.com×1
• caberphoto.com×1
• fabien-marcorelles.fr×1
• mariondumontphotographie.fr×1