prevost.es
HTML metadata
Technology
- Server
- Apache
- CMS
- Drupal
Third-party hosts loaded (3)
- cdn.jsdelivr.net×2
- cdnjs.cloudflare.com×2
- unpkg.com×2
Social
DNS records live
- NS
-
- ns1-a.nadns1.fr
- ns1-b.nadns1.com
- ns1-c.nadns1.com
- MX
-
- 10
- TXT
-
USVZPL89e1YX92zg74dKtPs+P0AZuNhEH1LiSwDhtVc=cpV3d9qyGJAe/zWQX+LA/uk7gFxVss5I9LGipXDpF88=globalsign-domain-verification=pDnsK0xkWo7-rOyk7I6H2X8X93ublk1DerIDg0jEf2
Email authentication strong
- SPF
-
v=spf1 -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; rua=mailto:kb9hwqfj@rua.eu.dmarcmanager.app;policy: reject (enforced) - DKIM
- no key found at common selectors
Certificate (current)
GlobalSign ECC OV SSL CA 2018
Expires in 36 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- content-security-policy-report-only
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- missing Permissions Policy
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
object-src 'none'; frame-ancestors 'self'; report-uri https://www.prevost.es/report-uri/enforce- strict-transport-security
max-age=16000000;includeSubDomains;- content-security-policy-report-only
script-src 'self' 'unsafe-inline' 'unsafe-eval' api.traceparts.com cdn-assets.traceparts.com static.hotjar.com script.hotjar.com prevost.matomo.cloud www.googletagmanager.com www.google-analytics.com www.youtube.com www.gstatic.com cdn.jsdelivr.net cdnjs.cloudflare.com dist https://www.google.com unpkg.com; script-src-attr 'self'; script-src-elem 'self' api.traceparts.com cdn-assets.traceparts.com static.hotjar.com script.hotjar.com prevost.matomo.cloud www.googletagmanager.com www.google-analytics.com www.youtube.com www.gstatic.com cdn.jsdelivr.net cdnjs.cloudflare.com dist https://www.google.com unpkg.com; style-src 'self' 'unsafe-inline' dist unpkg.com; style-src-attr 'self'; style-src-elem 'self' dist unpkg.com; form-action 'self'