izistudio.fr
HTML metadata
Technology
- Server
- Apache
- Fonts
-
- Google Fonts
Third-party hosts loaded (2)
- code.jquery.com×1
- fonts.googleapis.com×1
Social
Registration
- Registrar
- GANDI
- Created
- 2019-01-15
- Expires
- 2027-01-15 240 days left
- Updated
- 2025-12-20
- Name servers
-
- ns-26-b.gandi.net
- ns-36-c.gandi.net
- ns-81-a.gandi.net
DNS records live
- NS
-
- ns-26-b.gandi.net
- ns-36-c.gandi.net
- ns-81-a.gandi.net
- MX
-
- 10 spool.mail.gandi.net
- 50 fb.mail.gandi.net
Email authentication weak
- SPF
-
v=spf1 include:_mailcust.gandi.net ?allneutral (?all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R12
Expires in 47 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- missing Permissions Policy
Header values
- referrer-policy
origin-when-cross-origin, strict-origin-when-cross-origin- x-frame-options
sameorigin- x-content-type-options
nosniff- content-security-policy
default-src 'none'; base-uri 'self'; connect-src https: 'self'; font-src 'self' https: data:; form-action 'self' tpeweb.paybox.com tpeweb.e-transactions.fr www.paypal.com secure.ogone.com www.facebook.com; frame-ancestors 'self'; frame-src 'self' www.recaptcha.net platform.twitter.com www.google.com www.gstatic.com www.youtube.com izibook.freshdesk.com docs.google.com player.vimeo.com www.facebook.com v.calameo.com cdn.knightlab.com books.google.fr w.soundcloud.com leducs.activehosted.com analytics.tiktok.com radionotredame.net; img-src 'self' https: data:; media-src 'self' https:; object-src 'none'; script-src 'self' https: 'unsafe-inline' 'unsafe-eval'; style-src 'self' https: 'unsafe-inline'- strict-transport-security
max-age=631138519