indexo.dev

lalignecontinue.fr

.fr crawl

First seen 2026-05-02 · Last seen 2026-05-08 · ok HTTP/1.1 200 12231 ms crawled 2026-05-08

FR · 178.33.58.164 · AS16276 OVH SAS

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title
LaLigneContinue
Language
fr-FR

Technology

Server
nginx
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • cdnjs.cloudflare.com×1
  • www.googletagmanager.com×1

Social

Contact

Email

Registration

Registrar
OVH
Created
2020-01-16
Expires
2027-01-16 240 days left
Updated
2026-02-28
Name servers
  • dns103.ovh.net
  • ns103.ovh.net

DNS records live

NS
  • dns103.ovh.net
  • ns103.ovh.net
MX
  • 0 lalignecontinue-fr.mail.protection.outlook.com
TXT
  • 4|https://www.lalignecontinue.fr
Verified for
  • Brevo
  • Microsoft 365

Email authentication partial

SPF
v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpydUD9vgb/8e8F3CZprhj8Doz91zsb2f7OOvGqbdPykqrd6UJc0H850DgRLdFJydh4sdczXiaYP0b…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZB9EVBjts49VYJpJyFf699IWtKatIt8Vv1AgQ1+aXq7wrLHjYonNQ+1U4ZxG2bj5KRRmWkHdtRz0D…
  • mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed

Certificate (current)

R13
from 2026-03-09 to 2026-06-07
Expires in 18 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.lalignecontinue.fr/page/bienvenue

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
upgrade-insecure-requests ;default-src 'self' https: *;script-src 'unsafe-inline' 'unsafe-eval' https: blob: *;img-src 'self' blob: data: * ;style-src 'unsafe-inline' 'self' https: ;font-src 'self' data: https: *;media-src 'self' blob: data: https: *;connect-src 'self' https: blob: *;frame-ancestors 'self' https://*

Links to (6)

Linked from (1)