mgf-info.fr

.fr crawl

First seen 2026-04-13 · Last seen 2026-05-06 · ok HTTP/1.1 200 1123 ms crawled 2026-05-06

FR · 195.154.70.27 · AS12876 Scaleway SAS

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title: MGF - Grossiste avec services à valeur ajoutée
Language: fr

Technology

CMS: Gatsby

Social

Contact

Phone

01 60 95 05 94

Registration

Registrar

SCALEWAY

Created

2015-01-15

Expires

2027-01-15 240 days left

Updated

2026-05-06

Name servers

ns1.worldwidedns.net
ns2.worldwidedns.net
ns3.worldwidedns.net
ns4.worldwidedns.net

DNS records live

NS

ns1.worldwidedns.net
ns2.worldwidedns.net
ns3.worldwidedns.net
ns4.worldwidedns.net

MX

0 mgfinfo-fr0i.mail.protection.outlook.com

TXT

+B0AGGUCscNuW4sTSSU5MQvtxis=

Email authentication strong

SPF

v=spf1 mx a include:spf1.connect-we.com include:spf2.connect-we.com include:spf3.connect-we.com include:spf.protection.outlook.com include:spf.sarbacane.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; sp=reject; rua=mailto:dmarc@we-connect.pro; ruf=mailto:dmarc@we-connect.pro; adkim=s; aspf=s; fo=1

policy: reject (enforced) · sp=reject

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1810uOV457mEFDVThpP6Trzn1Mb1rcr0SiNNdhcbtfnRVnR4LierHpHWA/trDGMw3yjINmVZAF3vcN…

selectors probed

Certificate (current)

R13

from 2026-04-30 to 2026-07-29

Expires in 70 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.mgf-info.fr/

present

content-security-policy-report-only
x-frame-options
x-content-type-options

findings

missing HSTS
missing Content Security Policy
weak frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff
content-security-policy-report-only: font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com *.googleapis.com data: https://api-sogecommerce.societegenerale.eu/static/ https://cdnjs.cloudflare.com 'self' data: data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com https://sogecommerce.societegenerale.eu/vads-payment/ https://api-sogecommerce.societegenerale.eu/api-payment/ https://api-sogecommerce.societegenerale.eu/static/ *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube

Links to (2)

adobe.com×2
linkedin.com×2

Linked from (1)

alliancedunumerique.fr×2