lepavillon-caen.com

.com crawl

First seen 2026-05-15 · Last seen 2026-05-15 · ok HTTP/1.1 200 3822 ms crawled 2026-05-20

AU · 103.169.142.0 · AS209242 Cloudflare London, LLC

Reputation 94/100 dmarc monitor-only

sector other type landing page

HTML metadata

Title: Home
Language: fr-FR

Open Graph

title: Home

Technology

CDN: Cloudflare

Registration

Registrar

OVH sas

Created

2014-07-28

Expires

2026-07-28 67 days left

Updated

2025-06-06

Name servers

dns109.ovh.net
ns109.ovh.net

DNS records live

NS

dns109.ovh.net
ns109.ovh.net

MX

1 mx1.ovh.net
100 mxb.ovh.net
5 mx2.ovh.net

TXT

canva-domain-verify=f9f02814-9acc-4ad5-bd20-85cc5a5206f7

Email authentication partial

SPF

v=spf1 include:mx.ovh.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

WR1

from 2026-05-11 to 2026-08-09

Expires in 80 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://lepavillon-caen.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' *.canva.com canva.com; report-uri https://csp.canva.com/_cspreport?app=websites; base-uri 'self'; object-src 'none'; script-src 'report-sample' 'strict-dynamic' 'nonce-9d523f27-3baa-4f18-9017-c06226da2b4c' 'wasm-unsafe-eval' https://www.google.com/recaptcha/api.js;
strict-transport-security: max-age=31536000

Linked from (1)

caencabouge.fr×1