fulll.io
Technology
- CDN
- Amazon CloudFront
- Server
- AmazonS3
- Fonts
-
- Google Fonts
Third-party hosts loaded (1)
- fonts.googleapis.com×4
DNS records live
- NS
-
- ns-1243.awsdns-27.org
- ns-1956.awsdns-52.co.uk
- ns-34.awsdns-04.com
- ns-724.awsdns-26.net
- MX
-
- 10 inbound-smtp.eu-west-1.amazonaws.com
- TXT
-
hibp-verify=dweb_7pwimqxwb2rioe1i7tdxjk5tv=spf1 include:amazonses.com ~all
Certificate (current)
Amazon RSA 2048 M01
Expires in 195 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- referrer-policy
- findings
-
- CSP uses wildcard sources
- missing frame protection
- missing Permissions Policy
Header values
- referrer-policy
same-origin- x-content-type-options
nosniff- content-security-policy
default-src 'self' blob: https://nominatim.openstreetmap.org; img-src 'self' blob: data: https://s3.eu-central-1.amazonaws.com https://*.inexweb.fr https://*.inexweb.io https://*.inextenso.io https://*.s3.eu-central-1.amazonaws.com https://*.deloitteexperts.com https://*.deloitte.direct https://*.easydeloitte.at https://www.google-analytics.com https://api.tiles.mapbox.com https://lipis.github.io https://kp-sandbox.com/ https://*.benchbox.net https://*.fulll.io https://js.intercomcdn.com https://static.intercomassets.com https://downloads.intercomcdn.com https://downloads.intercomcdn.eu https://downloads.au.intercomcdn.com https://uploads.intercomusercontent.com https://gifs.intercomcdn.com https://video-messages.intercomcdn.com https://messenger-apps.intercom.io https://messenger-apps.eu.intercom.io https://messenger-apps.au.intercom.io https://*.intercom-attachments-1.com https://*.intercom-attachments.eu https://*.au.intercom-attachments.com https://*.intercom-attachments-2.com ht- strict-transport-security
max-age=63072000; includeSubdomains; preload