umr-retraite.fr

.fr crawl

First seen 2026-04-15 · Last seen 2026-05-13 · ok HTTP/1.1 200 4375 ms crawled 2026-05-10

FR · 212.234.176.85 · AS3215 Orange

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: Page d'accueil | UMR
Language: fr
Canonical: http://umr-retraite.fr/

Technology

Server: Apache
CMS: Drupal

Third-party hosts loaded (1)

static.groupe-vyv.fr×1

Social

Contact

Phone

Registration

Registrar

NAMESHIELD

Created

2017-11-06

Expires

2026-11-06 171 days left

Updated

2026-01-05

Name servers

ns1-a.nadns1.fr
ns1-b.nadns1.com
ns1-c.nadns1.com

DNS records live

NS

ns1-a.nadns1.fr
ns1-b.nadns1.com
ns1-c.nadns1.com

MX

5 mx.mailbox.orange-business.com

TXT

_globalsign-domain-verification=8sp-s9m8d_zpndGDmARrgDG7lN0H5Jqa9lAATnpOw0
_globalsign-domain-verification=uToV7eH0fRMtqoPcvcKfdF_6tHHMPHYuY_FjQrcB_e
_globalsign-domain-verification=sODNbE-E5Vbsaob2ZQQRsFl5K9cTE6LnDu5y2aMopN

Email authentication weak

SPF: v=spf1 a mx ip4:54.38.43.18 ip4:54.36.54.245 ~all
softfail (~all)
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

GlobalSign RSA OV SSL CA 2018

from 2025-04-30 to 2026-06-01

Expires in 13 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://umr-retraite.fr/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src https: 'unsafe-inline' 'unsafe-eval';img-src 'self' data: https:
strict-transport-security: max-age=3600; includeSubDomains; preload