indexo.dev

pierreherme.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-11 · ok HTTP/1.1 200 2719 ms crawled 2026-05-08

FR · 185.31.40.125 · AS60362 alwaysdata SARL

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Accueil
Description
Entrez dans l'univers de goûts, de sensations et de plaisirs de Pierre Hermé et découvrez toutes ses créations originales. Livraison en France et en Europe.
Language
fr
Translations
  • en
  • fr

Technology

Server
Apache
CMS
Gatsby
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • www.facebook.com×2
  • www.googletagmanager.com×2
  • static.klaviyo.com×1

Social

Contact

Phone

Registration

Registrar
OVH sas
Created
2000-04-04
Expires
2027-04-04 319 days left
Updated
2026-04-05
Name servers
  • dns102.ovh.net
  • ns102.ovh.net

DNS records live

NS
  • dns102.ovh.net
  • ns102.ovh.net
MX
  • 1 aspmx.l.google.com
  • 10 aspmx2.googlemail.com
  • 10 aspmx3.googlemail.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 4 TXT records
  • klaviyo-site-verification=Yaq7Ec
  • _1r8vwxh8faypwtc13efl825zp1utw3t
  • MS=ms28298847
  • brevo-code:ed31ccfa636c6e6aa27ff2ef418ac13a

Email authentication strong

SPF
v=spf1 ip4:185.31.40.125 ip4:202.130.188.146 ip4:210.80.190.146 ip4:210.80.191.146 ip4:158.255.110.83 include:_spf.google.com include:turbo-smtp.com include:mail.zendesk.com include:_spf.salesforce.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; sp=quarantine; adkim=s; aspf=s;
policy: quarantine · sp=quarantine
DKIM
Show 5 DKIM selectors
  • default: v=DKIM1;k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8CYQP1Kve6R3EYwuO3BbNicuC3Ijpf/Ycr8Ep6j1J7zB2B/DEXTcuXmeK5WTYuGyl1qWKD7xQOf0vcE…
  • google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC1pTk2U2sx5Xn2Rpnir6EmShrLiwMNRW8TJg2H44TRwUgD+0juoigI/fx+YhdwOqpyYfFiaVPLMUqyTij3s5…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtsj47+gU/wfSJNEFdPuVA4NkSW3Zpl2lNIv4mKsJtuNUqE6jxMvdTVH+ePl10Oul8l+d1LkNib0mx3Ehl7…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2LOO2UCFpPUaS7ZsT6QD2TGpKIXVOMhaAh1rVIxCsrDdSbJksWNSJbxiqW4+UJ0tjeBLrTsw8um7ghFCMC…
selectors probed

Certificate (current)

R12
from 2026-04-01 to 2026-06-30
Expires in 41 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.pierreherme.com/

present
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • missing Content Security Policy
  • weak frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff
content-security-policy-report-only
font-src *.gstatic.com data: *.googleapis.com 'self' data: *.doubleclick.net *.facebook.com *.fontawesome.com https://fonts.bunny.net https://cdnjs.cloudflare.com applepay.cdn-apple.com *.survicate.com https://github.com https://use.typekit.net data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.facebook.com *.monetico-services.com 'self' connect.facebook.net graph.facebook.com business.facebook.com 'self' 'unsafe-inline'; frame-ancestors www.gstatic.com 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com player.vimeo.com https://www.google.com/recaptcha/ www.google.com *.google.com

Links to (8)

Linked from (2)