impactco2.fr
HTML metadata
Technology
- CMS
- Next.js
Third-party hosts loaded (1)
- cdn.jsdelivr.net×6
Social
Registration
- Registrar
- NAMESHIELD
- Created
- 2022-09-15
- Expires
- 2026-09-15 119 days left
- Updated
- 2025-09-18
- Name servers
-
- a.ns.developpement-durable.gouv.fr
- b.ns.developpement-durable.gouv.fr
- nsa.perf1.fr
- nsb.perf1.com
- nsc.perf1.com
DNS records live
- NS
-
- a.ns.developpement-durable.gouv.fr
- b.ns.developpement-durable.gouv.fr
- nsa.perf1.fr
- nsb.perf1.com
- nsc.perf1.com
- MX
-
- 0 mx.ox.numerique.gouv.fr
- TXT
-
google-site-verification=hAp0NyLsaMI1Nh9310_9uvmDn_MsdgPx0XXjSk_iwR8brevo-code:c56a7e64996f50ded799b6c2f55affb2
Email authentication strong
- SPF
-
v=spf1 include:_spf.ox.numerique.gouv.fr -allstrict (-all) - DMARC
-
v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.compolicy: none (monitoring only) - DKIM
-
- mail:
k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed - mail:
Certificate (current)
R12
Expires in 52 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net- strict-transport-security
max-age=31536000