indexo.dev

holidu.fr

.fr crawl

First seen 2026-04-13 · Last seen 2026-05-14 · ok HTTP/1.1 200 7007 ms crawled 2026-05-05

US · 3.164.68.95 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Holidu - Locations de Vacances au Meilleur Prix
Description
Large choix de locations et maisons de vacances, villas de qualité ✔ Logements vérifiés au meilleur prix à réserver en toute confiance ✔ Logements avec piscine, vue sur la mer, adaptés aux enfants et aux animaux ✔ Spécialiste des plus belles régions de vacances en Europe ✔
Language
fr-FR
Canonical
https://www.holidu.fr/
Translations
  • da-dk
  • de-at
  • de-ch
  • de-de
  • el-gr
  • en-au
  • en-ca
  • en-gb
  • en-ie
  • en-nz
  • en-us
  • es-es
  • es-mx
  • fr-be
  • fr-fr
  • hr-hr
  • it-it
  • nb-no
  • nl-nl
  • pl-pl
  • pt-br
  • pt-pt
  • sv-se

Open Graph

title
Holidu - Locations de Vacances au Meilleur Prix
description
Large choix de locations et maisons de vacances, villas de qualité ✔ Logements vérifiés au meilleur prix à réserver en toute confiance ✔ Logements avec piscine, vue sur la mer, adaptés aux enfants et aux animaux ✔ Spécialiste des plus belles régions de vacances en Europe ✔

Technology

CDN
Amazon CloudFront
Analytics
  • Google Analytics
  • Google Tag Manager
Ads
  • Meta Pixel
  • Taboola
Third-party hosts loaded (30)
  • static.holidu.com×203
  • assets.holidu.com×14
  • img.holidu.com×8
  • www.googletagmanager.com×2
  • api.holidu.com×1
  • bat.bing.com×1
  • cdn.taboola.com×1
  • cdnjs.cloudflare.com×1
  • connect.facebook.net×1
  • retrack-kupona.kuponacdn.de×1
  • static2.holidu.com×1
  • widget.trustpilot.com×1
  • www.google-analytics.com×1
  • www.holidu.at×1
  • www.holidu.be×1
  • www.holidu.ca×1
  • www.holidu.ch×1
  • www.holidu.co.nz×1
  • www.holidu.co.uk×1
  • www.holidu.com×1
  • www.holidu.com.au×1
  • www.holidu.com.br×1
  • www.holidu.com.mx×1
  • www.holidu.de×1
  • www.holidu.dk×1
  • www.holidu.es×1
  • www.holidu.gr×1
  • www.holidu.hr×1
  • www.holidu.ie×1
  • www.holidu.it×1

Contact

Address
Riesstraße 24, 80992, Munich, DE

Registration

Registrar
GANDI
Created
2014-05-23
Expires
2027-01-06 231 days left
Updated
2025-12-07
Name servers
  • ns-1239.awsdns-26.org
  • ns-1638.awsdns-12.co.uk
  • ns-427.awsdns-53.com
  • ns-829.awsdns-39.net

DNS records live

NS
  • ns-1239.awsdns-26.org
  • ns-1638.awsdns-12.co.uk
  • ns-427.awsdns-53.com
  • ns-829.awsdns-39.net
MX
  • 1 aspmx.l.google.com
  • 10 aspmx2.googlemail.com
  • 10 aspmx3.googlemail.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 6 TXT records
  • google-site-verification=R6VEI7bPCFGNq63QMsG-GLymxTe5JeMcDsU4-OhSDo0
  • google-site-verification=sBxSxXATjUqQPrynUj5OBc1yFVMc3jKSXPzyD8JfpBg
  • pinterest-site-verification=6e1f5a586c62432a3f036e60f17fd931
  • v=spf1 -all
  • facebook-domain-verification=cyq5rv5t6z6pazkuq8mtvp7raxy5sp
  • google-site-verification=LxrBzCnXSpaNE8vR6dR9eU5et_L-wj2UCKHgGliDQ-Q

Certificate (current)

Amazon RSA 2048 M04
from 2025-11-19 to 2026-12-19
Expires in 213 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.holidu.fr/

present
  • strict-transport-security
  • content-security-policy
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' https:;script-src 'self' 'unsafe-inline' 'unsafe-eval' https: data:;style-src 'self' 'unsafe-inline' https:;img-src 'self' data: https: http:;font-src 'self' data: https:;connect-src 'self' https: ws: wws:;worker-src 'self' blob:;frame-ancestors 'self' https://*.holidu.com https://*.holidu.cloud https://*.holidu.io https://tsmart.tomas-travel.com
strict-transport-security
max-age=15552000
content-security-policy-report-only
default-src 'self'; script-src 'self' 'nonce-T5xGKkfBZF0VXcAN5iEM2Q==' 'unsafe-inline' https://www.googletagmanager.com https://www.google-analytics.com https://ssl.google-analytics.com https://cdn.jsdelivr.net https://cdn.chekin.com https://cdnjs.cloudflare.com https://widget.trustpilot.com https://retrack-kupona.kuponacdn.de; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' data: blob: https:; font-src 'self' data: https://fonts.gstatic.com; connect-src 'self' https://*.holidu.com https://*.bookiply.com https://www.google-analytics.com https://*.google-analytics.com https://analytics.google.com https://*.sentry.io https://widget.trustpilot.com https://api.trustpilot.com https://cdn.chekin.com; frame-src 'self' https://www.googletagmanager.com https://widget.trustpilot.com https://cdn.chekin.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self'; manifest-src 'self'; worker-src 'self' blob:; media-src 'self' https:

Links to (1)

Linked from (3)