osimmo.fr

HTML metadata

Title: Immobilier, agences immobilières Omnium
Description: Vous cherchez à acheter, à louer ou à vendre un appartement, une maison, un bien immobilier dans le neuf ou l’ancien ou un terrain. Vous cherchez un syndic de copropriété, un service de gestion locative ou des conseils. Retrouvez tous les Services de l’Immobilier.
Language: fr-fr
Generator: Joomla! - Open Source Content Management

Technology

Server: Apache
CMS: Joomla

Registration

Registrar

OVH

Created

2003-03-13

Expires

2026-12-04 197 days left

Updated

2026-01-31

Name servers

dns102.ovh.net
ns102.ovh.net

DNS records live

NS

dns102.ovh.net
ns102.ovh.net

MX

1 mail.palladium-group.com

Email authentication strong

SPF: v=spf1 a include:palladium-group.com -all
strict (-all)
DMARC: v=DMARC1; p=quarantine; rua=mailto:dmarc@osimmo.fr; ruf=mailto:dmarc@osimmo.fr; fo=0:1:d:s; adkim=r; aspf=r; pct=100; rf=afrf; ri=604800; sp=quarantine
policy: quarantine · sp=quarantine
DKIM: no key found at common selectors

Certificate (current)

R12

from 2026-04-19 to 2026-07-18

Expires in 58 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.osimmo.fr/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(self), attribution-reporting=(self), autoplay=(self), bluetooth=(self), camera=(self), compute-pressure=(self), display-capture=(self), encrypted-media=(self), fullscreen=(self), geolocation=(self), gyroscope=(self), hid=(self), identity-credentials-get=(self), idle-detection=(self), local-fonts=(self), magnetometer=(self), microphone=(self), midi=(self), otp-credentials=(self), payment=(self), picture-in-picture=(self "https://*.youtube.com" "https://*.youtube-nocookie.com" "https://play.google.com" "https://*.vimeo.com"), publickey-credentials-create=(self), publickey-credentials-get=(self), screen-wake-lock=(self), serial=(self), storage-access=*, usb=(self), web-share=(self), window-management=(self), xr-spatial-tracking=(self)
x-content-type-options: nosniff
content-security-policy: default-src 'none'; object-src 'self'; frame-src 'self' https://*.google-analytics.com https://www.google.com/jsapi https://www.google.com/uds/ https://www.google.com/recaptcha/ https://*.gstatic.com https://*.googleapis.com https://maps.google.com https://maps.google.fr https://www.googletagmanager.com https://*.apis.google.com https://apis.google.com https://*.ggpht.com https://tagmanager.google.com https://*.googletagservices.com https://*.doubleclick.net https://*.googleadservices.com https://*.googlesyndication.com https://feedback-pa.clients6.google.com https://www.google.com/ccm/ https://google.com/ccm/ https://google.fr/ccm/ https://www.google.fr/ccm/ https://google.com/pagead/ https://google.fr/pagead/ https://google.com/ads/ https://google.fr/ads/ https://www.google.com/pagead/ https://www.google.fr/pagead/ https://www.google.com/ads/ https://www.google.fr/ads/; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.google-analytics.com https://www.google.com/jsapi https:/
strict-transport-security: max-age=63072000; includeSubDomains; preload

Links to (1)

palladium-group.fr×2