tivoly.com
HTML metadata
Technology
- Server
- nginx
- CMS
- Nuxt
Registration
- Registrar
- OVH sas
- Created
- 1996-11-26
- Expires
- 2026-11-25 189 days left
- Updated
- 2025-11-26
- Name servers
-
- dns200.anycast.me
- ns200.anycast.me
DNS records live
- NS
-
- dns200.anycast.me
- ns200.anycast.me
- MX
-
- 5 tivoly-com.mail.protection.outlook.com
- TXT
-
Show 30 TXT records
5ltlskvhk4v8cm6pqfn3c651y4sjvqf0MS=118456709D1F2B3EE8A4347EDD68A465B6FB7D35google-site-verification=dSA9d_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|www.tivoly.comlkyrs5f9vv57lw94pcxzjwlzfbcz9gpvgjkhdg6y4jb6vmll7qlv0lq6v0mh1mxvj5qkbhvtwk72nkfkcf83hcmmfjsdvjz5sy53w6bq6dx98898myg0mkpk24wkznhf
Email authentication strong
- SPF
-
v=spf1 mx ip4:209.206.8.235 ip4:85.255.24.21 ip4:217.182.89.118 ip4:51.38.53.198 include:eskerondemand.com include:spf.protection.outlook.com include:sendgrid.net -allstrict (-all) - DMARC
-
v=DMARC1; p=none; pct=100; rua=mailto:infracom@tivoly.compolicy: none (monitoring only) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbaxwLdZJ1m+9GROjGY7tkpjHC8Eof3Rq5fytvV8+Uza34hePIE/5NWjAlyMAf6+0m0KKirPpwwyw+irofWI… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfsXcwLZ35kZVSjN/mA5I6Env6ie5ZAclElm8eTKBRznuAVbEMC4uzUWb01/xyDEQ8bI6Gr+I+2DLToh04… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy9DVCXBILn9CIUWxJB4CZOwX5VN/QpFfsaU0hMcXdZbbOHX3qqyt6xMEeLorV0SJW/66m0imQTYFt88ITQ…
selectors probed - selector1:
Certificate (current)
GandiCert
Expires in 116 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-resource-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
microphone=(), camera=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.google-analytics.com *.googletagmanager.com analytics.google.com stats.g.doubleclick.net; style-src 'self' 'unsafe-inline'; img-src 'self' data: *.openstreetmap.org cms.tivoly.com *.google-analytics.com *.googletagmanager.com analytics.google.com stats.g.doubleclick.net www.google.fr www.google.com *.google.fr *.google.com; font-src 'self' data: cdn.jsdelivr.net; connect-src 'self' *.openstreetmap.org cms.tivoly.com *.google-analytics.com *.googletagmanager.com analytics.google.com *.analytics.google.com stats.g.doubleclick.net; media-src 'self'; object-src 'none'; child-src 'self' https://www.youtube.com https://www.youtube-nocookie.com; frame-src 'self' https://www.youtube.com https://www.youtube-nocookie.com; frame-ancestors 'none'; form-action 'self'; base-uri 'self';- strict-transport-security
max-age=63072000; includeSubDomains; preload- cross-origin-opener-policy
same-origin- cross-origin-resource-policy
same-site
Linked from (1)
- kwan.fr×2