indexo.dev

toutelhistoire.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 991 ms crawled 2026-05-19

FR · 152.228.129.252 · AS16276 OVH SAS

Reputation 100/100

sector media news type homepage

HTML metadata

Title
TLH - Accueil
Description
Revivez les grands événements qui ont bouleversé notre histoire et façonné le monde dans lequel nous vivons. Enquêtes, témoignages, récits, TOUTE L’HISTOIRE revient sur les grands conflits et décrypte les évolutions de notre société. TOUTE L’HISTOIRE est partenaire d’événements et d’institutions comme le Château de Versailles, les Rendez-Vous de l’Histoire de Blois et la Réunion des musées nationaux - Grand Palais.
Language
fr

Technology

Server
nginx
jQuery
3.4.1 known XSS (<3.5)

Third-party hosts loaded (4)

  • origin.media1.str.abweb.com×267
  • photos.abweb.com×12
  • cdn.jsdelivr.net×2
  • code.jquery.com×1

Social

Registration

Registrar
Nameshield SAS
Created
2002-12-18
Expires
2026-12-18 211 days left
Updated
2025-12-16
Name servers
  • nsa.perf1.fr
  • nsb.perf1.com
  • nsc.perf1.com

DNS records live

NS
  • nsa.perf1.fr
  • nsb.perf1.com
  • nsc.perf1.com
MX
  • 10 mxa-00608501.gslb.pphosted.com
  • 10 mxb-00608501.gslb.pphosted.com
TXT
  • mrn7fj5t8l1pl78gvtl4xtl5wcpwbyc5
Verified for
  • Atlassian
  • Microsoft 365

Email authentication strong

SPF
v=spf1 ptr a:www.toutelhistoire.com ip4:158.255.99.2 include:spf.protection.outlook.com include:spf-00608501.pphosted.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-04-19 to 2026-07-18
Expires in 59 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://toutelhistoire.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(), microphone=(), camera=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; base-uri 'self'; object-src 'none'; frame-ancestors 'self'; img-src 'self' data: https:; font-src 'self' data: https:; style-src 'self' 'unsafe-inline' https:; script-src 'self' 'unsafe-inline' https:; connect-src 'self' https:;
strict-transport-security
max-age=31536000

Links to (25)

Linked from (9)