indexo.dev

skipass-meribel.com

.com crawl

First seen 2026-05-08 · Last seen 2026-05-15 · ok HTTP/1.1 200 2843 ms crawled 2026-05-15

US · 45.60.72.222 · AS19551 Incapsula Inc

Reputation 100/100

Classifying

HTML metadata

Title
Achetez vos forfaits Méribel et 3 Vallées en ligne ⛷️
Description
Achetez votre forfait de ski Méribel et Les 3 Vallées directement en ligne ⛷️ et direction les pistes à la découverte du plus grand domaine skiable du monde !
Language
fr
Canonical
https://www.skipass-meribel.com/
Translations
  • en
  • fr

Technology

Server
nginx

Registration

Registrar
Nameshield SAS
Created
2009-02-09
Expires
2027-02-09 265 days left
Updated
2026-02-07
Name servers
  • ns-1170.awsdns-18.org
  • ns-1909.awsdns-46.co.uk
  • ns-467.awsdns-58.com
  • ns-825.awsdns-39.net

DNS records live

NS
  • ns-1170.awsdns-18.org
  • ns-1909.awsdns-46.co.uk
  • ns-467.awsdns-58.com
  • ns-825.awsdns-39.net
TXT
Show 8 TXT records
  • 73y8s9p.impervadns.net
  • _globalsign-domain-verification=0CPzxyNbDA7FaxN5UuGgsyk7MTmQNgLE3v-x6GwgxV
  • globalsign-domain-verification=4E485687BD114008DA2BAE794E8F9DB1
  • globalsign-domain-verification=904964f6fda85f45cd7dc1e3a5ecf8d3
  • globalsign-domain-verification=F32E1B2E70B348CC165920EBB5BC9BC9
  • google-site-verification=Yv1cIOgfYmpc_wxO_BszvhtN4nFu6OxxZD7FuWS9vLs
  • google-site-verification=biMQEGGYQh_Ubj4-1htF3cxp8C-13py44PQuE-xuptQ
  • kyg96rms7x6sn6hgv52blp52fyf293bk

Email authentication no MX

SPF
v=spf1 include:spf.mailjet.com -all
strict (-all)
DMARC
v=DMARC1;p=none;rua=mailto:dmarc@compagniedesalpes.fr;ruf=mailto:dmarc@compagniedesalpes.fr;fo=0
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

GlobalSign Atlas R3 DV TLS CA 2026 Q2
from 2026-04-22 to 2026-07-21
Expires in 62 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.skipass-meribel.com/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
Header values
referrer-policy
strict-origin
permissions-policy
geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(self),magnetometer=(),gyroscope=(),fullscreen=(self 'https://app.webcam-hd.com'),payment=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; frame-src 'self' *; font-src * data: https://*.iadvize.com; img-src * data: blob: https://*.iadvize.com; script-src 'unsafe-inline' 'unsafe-eval' *; style-src 'unsafe-inline' *; connect-src * data: blob: https://*.iadvize.com wss://*.iadvize.com; worker-src * data: blob:; report-uri https://csp-report.browser-intake-datadoghq.eu/api/v2/logs?dd-api-key=pubf177c0970f8016f2550b02068ffb602a&dd-evp-origin=content-security-policy&ddsource=csp-report&ddtags=service%3Afront-vel-b2c%2Cenv%3Aprod
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (3)

Linked from (1)