umih62.fr
HTML metadata
Technology
- Server
- Apache
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
- Social widgets
-
- YouTube Embed
Third-party hosts loaded (5)
- cdn.jsdelivr.net×6
- www.googletagmanager.com×3
- fonts.googleapis.com×1
- fonts.gstatic.com×1
- www.youtube.com×1
Social
Contact
- Phone
DNS records live
- NS
-
- dns11.ovh.net
- ns11.ovh.net
- MX
-
- 1 mx0.mail.ovh.net
- 10 mx1.mail.ovh.net
- 20 mx2.mail.ovh.net
- 30 mx3.mail.ovh.net
- 40 mx4.mail.ovh.net
- TXT
-
Sendinblue-code:c1f65ce550730d6a448f3a37a9e8548d1|www.umih62.fr
Email authentication partial
- SPF
-
v=spf1 include:spf.sendinblue.com include:mx.ovh.com mx ~allsoftfail (~all) - DMARC
- not published
- DKIM
-
- mail:
k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed - mail:
Certificate (current)
R13
Expires in 75 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- findings
-
- short HSTS max-age
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing content type protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- content-security-policy
default-src * 'unsafe-inline' 'unsafe-eval'; img-src * data: blob: 'unsafe-inline'; font-src 'self' data: fonts.gstatic.com cdn.jsdelivr.net;- strict-transport-security
max-age=300
Links to (20)
- coteoweb.com×2
- facebook.com×2
- geiq-hrt.fr×2
- instagram.com×2
- linkedin.com×2
- malakoffhumanis.com×2
- metro.fr×2
- mrgoodfish.com×2
- pro-tourisme62.com×2
- rational-online.com×2
- sacem.fr×2
- spre.fr×2
- twitter.com×2
- umih.fr×2
- umihformation.fr×2
- akto.fr×2
- bleu-blanc-coeur.org×2
- cerfrance.fr×2
- ancv.com×2
- ademe.fr×2