maisondandoy.com
maisondandoy.com
HTML metadata
Technology
- Analytics
-
- Google Analytics
- Google Tag Manager
- Ads
-
- Google Ads
- Google Ads (DoubleClick)
- Meta Pixel
- Cookie consent
-
- Cookiebot
Third-party hosts loaded (13)
- d16n391k7whr4.cloudfront.net×18
- www.google.com×2
- www.googletagmanager.com×2
- cdn.smooch.io×1
- chimpstatic.com×1
- connect.facebook.net×1
- consent.cookiebot.com×1
- googleads.g.doubleclick.net×1
- media.smooch.io×1
- stats.g.doubleclick.net×1
- www.facebook.com×1
- www.google-analytics.com×1
- www.googleadservices.com×1
Social
Contact
- Phone
Registration
- Registrar
- OVH sas
- Created
- 2012-04-30
- Expires
- 2027-04-30 344 days left
- Updated
- 2026-05-01
- Name servers
-
- dns101.ovh.net
- ns101.ovh.net
DNS records live
- NS
-
- dns101.ovh.net
- ns101.ovh.net
- MX
-
- 1 aspmx.l.google.com
- 10 aspmx2.googlemail.com
- 10 aspmx3.googlemail.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
InkU4ctzz0v4C7L9btvXp8uHrgjHJ0WOOiJ8m03B1DYz7LBScF22s2BLVNrmK3W1
- Verified for
-
- Apple
Email authentication partial
- SPF
-
v=spf1 include:mx.ovh.com include:_spf.google.com ~allsoftfail (~all) - DMARC
-
v=DMARC1;p=none;policy: none (monitoring only) - DKIM
-
Show 4 DKIM selectors
- google:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRwoG9lpxNUG/mCDm6T8vRUYFjINXFqIFpC9eqyKJDyvxM/E2K2ULr5BVf2vkI6TG1eHC942gp6bdF… - k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxbBQ2Y4EbeMRuz83Ykxln+Gg2MRdmPswyXwzNXJhmwlwAf4NwfCxuvkAuW9f5wfI0DxW66fkY4KGBuJ9iT… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDJ1Gpa+4umORm5G687MCyUQrVaDoBUTRYzHWpLdu8LAnIvVBQalbfgl8L0nB+PBk8FMZQIxskL9n+Krqta6E/8TT…
selectors probed - google:
Certificate (current)
R13
Expires in 63 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
no-referrer-when-downgrade, strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
accelerometer=(), camera=(), geolocation=(self), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://*.adyen.com https://*.typeform.com blob:; script-src 'self' * https://chat-assets.frontapp.com https://*.adyen.com https://*.typeform.com https://js.stripe.com https://www.googletagmanager.com https://beacon-v2.helpscout.net 'unsafe-inline' 'unsafe-eval'; connect-src 'self' * https://*.craftcms.com https://sessions.bugsnag.com https://chat.frontapp.com https://beaconapi.helpscout.net https://d3hb14vkzrxvla.cloudfront.net; object-src 'self'; font-src 'self' https://s3.eu-west-1.amazonaws.com https://fonts.gstatic.com data:; img-src 'self' * https://s3.eu-west-1.amazonaws.com https://dandoy.s3.amazonaws.com https://*.craft-cdn.com https://g.stripe.com https://beacon-v2.helpscout.net https://d33v4339jhl8k0.cloudfront.net data:; media-src 'self' https://dandoy.s3.amazonaws.com https://d16n391k7whr4.cloudfront.net; frame-src 'self' * https://js.stripe.com; frame-ancestors 'self'; form-action 'self' *;- strict-transport-security
max-age=15768000; includeSubDomains; preload