heliopoles.fr

.fr crawl

First seen 2026-04-23 · Last seen 2026-05-18 · ok HTTP/1.1 200 20038 ms crawled 2026-05-18

FR · 212.129.32.109 · AS12876 Scaleway SAS

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: Éditions Héliopoles : des guides pratiques et des essais d'actualité pour mieux comprendre le monde.
Description: Éditions Héliopoles : vente en ligne et téléchargement de livres numériques (ebooks) et livres imprimés.
Language: fr
Canonical: https://www.heliopoles.fr/

Open Graph

url: https://www.heliopoles.fr/
title: Éditions Héliopoles : des guides pratiques et des essais d'actualité pour mieux comprendre le monde.
locale: fr_FR
site name: Éditions Héliopoles
description: Éditions Héliopoles : vente en ligne et téléchargement de livres numériques (ebooks) et livres imprimés.

Technology

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (2)

fonts.googleapis.com×1
www.googletagmanager.com×1

Social

Registration

Registrar

OVH

Created

2009-10-29

Expires

2027-10-29 526 days left

Updated

2024-10-12

Name servers

dns14.ovh.net
ns14.ovh.net

DNS records live

NS

dns14.ovh.net
ns14.ovh.net

MX

1 mx1.ovh.net
100 mxb.ovh.net
5 mx2.ovh.net

TXT

1|www.s-installer-a.com

Email authentication weak

SPF: v=spf1 include:mx.ovh.com ~all
softfail (~all)
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

R12

from 2026-05-07 to 2026-08-05

Expires in 77 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.heliopoles.fr/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
missing Permissions Policy

Header values

referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options: sameorigin
x-content-type-options: nosniff
content-security-policy: default-src 'none'; base-uri 'self'; connect-src https: 'self'; font-src 'self' https: data:; form-action 'self' tpeweb.paybox.com tpeweb.e-transactions.fr www.paypal.com secure.ogone.com www.saferpay.com p.monetico-services.com www.facebook.com www.landing-hachette.fr; frame-ancestors 'self'; frame-src 'self' www.recaptcha.net platform.twitter.com syndication.twitter.com www.google.com www.googletagmanager.com www.gstatic.com www.youtube.com izibook.freshdesk.com docs.google.com player.vimeo.com www.facebook.com v.calameo.com cdn.knightlab.com books.google.fr w.soundcloud.com leducs.activehosted.com analytics.tiktok.com radionotredame.net preprod.bloc.deepmemory.io bloc.deepmemory.io player.ausha.co www.landing-hachette.fr editionsepa.landing-hachette.fr pratique.landing-hachette.fr www.instagram.com play.hachetteheroes.com pinaplay.laplage.fr; img-src 'self' https: data:; media-src 'self' https: http:; object-src 'none'; script-src 'self' https: 'unsafe-inline' 'unsafe-eval' www.land
strict-transport-security: max-age=16000000; includeSubDomains; preload;

Links to (2)

calameo.com×2
facebook.com×2

Linked from (1)

lapiaz.fr×2