diff --git a/report.json b/report.json
index 1213f128..fdc78775 100644
--- a/report.json
+++ b/report.json
@@ -12,258 +12,220 @@
"incubateur-ademe/carte-verte"
],
"http": {
- "url": "https://carte-verte.beta.gouv.fr",
- "algorithm_version": 3,
- "end_time": "Sun, 20 Oct 2024 01:58:26 GMT",
- "grade": "B+",
- "hidden": false,
- "likelihood_indicator": "MEDIUM",
- "response_headers": {
- "Access-Control-Allow-Origin": "*",
- "Age": "2805208",
- "Cache-Control": "public, max-age=0, must-revalidate",
- "Content-Disposition": "inline",
- "Content-Encoding": "gzip",
- "Content-Security-Policy": "default-src 'none'; connect-src 'self' https://*.gouv.fr; font-src 'self'; media-src 'self'; img-src 'self' data:; script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; style-src 'self' 'unsafe-inline'; object-src 'self' data:; frame-ancestors 'self'; base-uri 'self' https://*.gouv.fr; form-action 'self' https://*.gouv.fr; block-all-mixed-content ; upgrade-insecure-requests ; frame-src 'none';",
- "Content-Type": "text/html; charset=utf-8",
- "Cross-Origin-Embedder-Policy": "credentialless",
- "Cross-Origin-Opener-Policy": "same-origin",
- "Cross-Origin-Resource-Policy": "cross-origin",
- "Date": "Sun, 20 Oct 2024 01:58:26 GMT",
- "Etag": "W/\"9409faa6ede0204675d088da0a5e2c72\"",
- "Permissions-Policy": "fullscreen=(), display-capture=(), camera=(), microphone=(), geolocation=()",
- "Referrer-Policy": "no-referrer, strict-origin-when-cross-origin",
- "Server": "Vercel",
- "Strict-Transport-Security": "max-age=63072000",
- "Transfer-Encoding": "chunked",
- "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url",
- "X-Content-Type-Options": "nosniff",
- "X-Frame-Options": "DENY",
- "X-Matched-Path": "/",
- "X-Vercel-Cache": "HIT",
- "X-Vercel-Id": "pdx1::2ndph-1729389506058-471d61a57219",
- "X-Xss-Protection": "1; mode=block"
- },
- "scan_id": 57047369,
- "score": 80,
- "start_time": "Sun, 20 Oct 2024 01:58:25 GMT",
- "state": "FINISHED",
- "status_code": 200,
- "tests_failed": 1,
- "tests_passed": 9,
- "tests_quantity": 10,
- "details": {
+ "scan": {
+ "algorithmVersion": 4,
+ "grade": "B+",
+ "error": null,
+ "score": 80,
+ "statusCode": 200,
+ "testsFailed": 1,
+ "testsPassed": 9,
+ "testsQuantity": 10,
+ "responseHeaders": {
+ "access-control-allow-origin": "*",
+ "age": "7384226",
+ "cache-control": "public, max-age=0, must-revalidate",
+ "content-disposition": "inline",
+ "content-security-policy": "default-src 'none'; connect-src 'self' https://*.gouv.fr; font-src 'self'; media-src 'self'; img-src 'self' data:; script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; style-src 'self' 'unsafe-inline'; object-src 'self' data:; frame-ancestors 'self'; base-uri 'self' https://*.gouv.fr; form-action 'self' https://*.gouv.fr; block-all-mixed-content ; upgrade-insecure-requests ; frame-src 'none';",
+ "content-type": "text/html; charset=utf-8",
+ "cross-origin-embedder-policy": "credentialless",
+ "cross-origin-opener-policy": "same-origin",
+ "cross-origin-resource-policy": "cross-origin",
+ "date": "Sun, 02 Mar 2025 01:48:52 GMT",
+ "etag": "W/\"93000e2ab5b1cb2992ba98a0ec67586a\"",
+ "permissions-policy": "fullscreen=(), display-capture=(), camera=(), microphone=(), geolocation=()",
+ "referrer-policy": "no-referrer, strict-origin-when-cross-origin",
+ "server": "Vercel",
+ "strict-transport-security": "max-age=63072000",
+ "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url",
+ "x-content-type-options": "nosniff",
+ "x-frame-options": "DENY",
+ "x-matched-path": "/",
+ "x-vercel-cache": "HIT",
+ "x-vercel-id": "iad1::sl25m-1740880132890-7d9acf78d0d1",
+ "x-xss-protection": "1; mode=block",
+ "connection": "close",
+ "transfer-encoding": "chunked"
+ }
+ },
+ "tests": {
"content-security-policy": {
"expectation": "csp-implemented-with-no-unsafe",
- "name": "content-security-policy",
- "output": {
- "data": {
- "base-uri": [
- "https://*.gouv.fr",
- "'self'"
- ],
- "block-all-mixed-content": [
- "'none'"
- ],
- "connect-src": [
- "https://*.gouv.fr",
- "'self'"
- ],
- "default-src": [
- "'none'"
- ],
- "font-src": [
- "'self'"
- ],
- "form-action": [
- "https://*.gouv.fr",
- "'self'"
- ],
- "frame-ancestors": [
- "'self'"
- ],
- "frame-src": [
- "'none'"
- ],
- "img-src": [
- "data:",
- "'self'"
- ],
- "media-src": [
- "'self'"
- ],
- "object-src": [
- "data:",
- "'self'"
- ],
- "script-src": [
- "'unsafe-inline'",
- "https://stats.beta.gouv.fr",
- "'self'"
- ],
- "style-src": [
- "'unsafe-inline'",
- "'self'"
- ],
- "upgrade-insecure-requests": [
- "'none'"
- ]
- },
- "http": true,
- "meta": false,
- "numPolicies": 1,
- "policy": {
- "antiClickjacking": true,
- "defaultNone": true,
- "insecureBaseUri": false,
- "insecureFormAction": false,
- "insecureSchemeActive": false,
- "insecureSchemePassive": false,
- "strictDynamic": false,
- "unsafeEval": false,
- "unsafeInline": true,
- "unsafeInlineStyle": true,
- "unsafeObjects": false
- }
- },
"pass": false,
"result": "csp-implemented-with-unsafe-inline",
- "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.",
- "score_modifier": -20
+ "scoreModifier": -20,
+ "data": {
+ "default-src": [
+ "'none'"
+ ],
+ "connect-src": [
+ "'self'",
+ "https://*.gouv.fr"
+ ],
+ "font-src": [
+ "'self'"
+ ],
+ "media-src": [
+ "'self'"
+ ],
+ "img-src": [
+ "'self'",
+ "data:"
+ ],
+ "script-src": [
+ "'self'",
+ "'unsafe-inline'",
+ "https://stats.beta.gouv.fr"
+ ],
+ "style-src": [
+ "'self'",
+ "'unsafe-inline'"
+ ],
+ "object-src": [
+ "'self'",
+ "data:"
+ ],
+ "frame-ancestors": [
+ "'self'"
+ ],
+ "base-uri": [
+ "'self'",
+ "https://*.gouv.fr"
+ ],
+ "form-action": [
+ "'self'",
+ "https://*.gouv.fr"
+ ],
+ "block-all-mixed-content": [
+ "'none'"
+ ],
+ "upgrade-insecure-requests": [
+ "'none'"
+ ],
+ "frame-src": [
+ "'none'"
+ ]
+ },
+ "http": true,
+ "meta": false,
+ "policy": {
+ "antiClickjacking": true,
+ "defaultNone": true,
+ "insecureBaseUri": false,
+ "insecureFormAction": false,
+ "insecureSchemeActive": false,
+ "insecureSchemePassive": false,
+ "strictDynamic": false,
+ "unsafeEval": false,
+ "unsafeInline": true,
+ "unsafeInlineStyle": true,
+ "unsafeObjects": false
+ },
+ "numPolicies": 1
},
"cookies": {
"expectation": "cookies-secure-with-httponly-sessions",
- "name": "cookies",
- "output": {
- "data": null,
- "sameSite": null
- },
"pass": true,
"result": "cookies-not-found",
- "score_description": "No cookies detected",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "sameSite": false
},
"cross-origin-resource-sharing": {
"expectation": "cross-origin-resource-sharing-not-implemented",
- "name": "cross-origin-resource-sharing",
- "output": {
- "data": {
- "acao": "*",
- "clientaccesspolicy": null,
- "crossdomain": null
- }
- },
"pass": true,
"result": "cross-origin-resource-sharing-implemented-with-public-access",
- "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "*"
},
"redirection": {
"expectation": "redirection-to-https",
- "name": "redirection",
- "output": {
- "destination": "https://carte-verte.beta.gouv.fr/",
- "redirects": true,
- "route": [
- "http://carte-verte.beta.gouv.fr/",
- "https://carte-verte.beta.gouv.fr/"
- ],
- "status_code": 200
- },
"pass": true,
"result": "redirection-to-https",
- "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "destination": "https://carte-verte.beta.gouv.fr/",
+ "redirects": true,
+ "route": [
+ "http://carte-verte.beta.gouv.fr/",
+ "https://carte-verte.beta.gouv.fr/"
+ ],
+ "statusCode": 200
},
"referrer-policy": {
"expectation": "referrer-policy-private",
- "name": "referrer-policy",
- "output": {
- "data": "no-referrer, strict-origin-when-cross-origin",
- "http": true,
- "meta": false
- },
"pass": true,
"result": "referrer-policy-private",
- "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"",
- "score_modifier": 5
+ "scoreModifier": 5,
+ "data": "no-referrer, strict-origin-when-cross-origin",
+ "http": true,
+ "meta": false
},
"strict-transport-security": {
"expectation": "hsts-implemented-max-age-at-least-six-months",
- "name": "strict-transport-security",
- "output": {
- "data": "max-age=63072000",
- "includeSubDomains": false,
- "max-age": 63072000,
- "preload": false,
- "preloaded": false
- },
"pass": true,
"result": "hsts-implemented-max-age-at-least-six-months",
- "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "max-age=63072000",
+ "includeSubDomains": false,
+ "maxAge": 63072000,
+ "preload": false,
+ "preloaded": false
},
"subresource-integrity": {
"expectation": "sri-implemented-and-external-scripts-loaded-securely",
- "name": "subresource-integrity",
- "output": {
- "data": {}
- },
"pass": true,
"result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin",
- "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": {}
},
"x-content-type-options": {
"expectation": "x-content-type-options-nosniff",
- "name": "x-content-type-options",
- "output": {
- "data": "nosniff"
- },
"pass": true,
"result": "x-content-type-options-nosniff",
- "score_description": "X-Content-Type-Options header set to \"nosniff\"",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "nosniff"
},
"x-frame-options": {
"expectation": "x-frame-options-sameorigin-or-deny",
- "name": "x-frame-options",
- "output": {
- "data": "DENY"
- },
"pass": true,
"result": "x-frame-options-implemented-via-csp",
- "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive",
- "score_modifier": 5
- },
- "x-xss-protection": {
- "expectation": "x-xss-protection-disabled",
- "name": "x-xss-protection",
- "output": {
- "data": "1; mode=block"
- },
+ "scoreModifier": 5,
+ "data": "DENY"
+ },
+ "cross-origin-resource-policy": {
+ "expectation": "corp-implemented-with-same-site",
"pass": true,
- "result": "x-xss-protection-enabled-mode-block",
- "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"",
- "score_modifier": 0
+ "result": "corp-implemented-with-cross-origin",
+ "scoreModifier": 0,
+ "data": "cross-origin",
+ "http": true,
+ "meta": false
}
}
},
"updownio": {
"token": "aeqs",
"url": "https://carte-verte.beta.gouv.fr",
+ "type": "https",
"alias": "Carte Verte",
- "last_status": 200,
"uptime": 100,
"down": false,
"down_since": null,
"up_since": "2024-12-25T16:46:11Z",
"error": null,
"period": 300,
- "apdex_t": 0.5,
"string_match": "",
"enabled": true,
"published": true,
+ "recipients": [
+ "email:3429082144"
+ ],
+ "last_check_at": "2025-03-02T01:55:11Z",
+ "next_check_at": "2025-03-02T02:00:10Z",
+ "created_at": "2023-12-13T14:46:41Z",
+ "mute_until": null,
+ "last_status": 200,
+ "apdex_t": 0.5,
"disabled_locations": [
"lan",
"mia",
@@ -272,20 +234,13 @@
"tok",
"syd"
],
- "recipients": [
- "email:3429082144"
- ],
- "last_check_at": "2025-01-26T01:48:41Z",
- "next_check_at": "2025-01-26T01:53:40Z",
- "created_at": "2023-12-13T14:46:41Z",
- "mute_until": null,
- "favicon_url": "https://carte-verte.beta.gouv.fr/_next/static/media/favicon.8c087985.ico",
"custom_headers": {},
+ "favicon_url": "https://carte-verte.beta.gouv.fr/_next/static/media/favicon.8c087985.ico",
"http_verb": "GET/HEAD",
"http_body": "",
"ssl": {
- "tested_at": "2025-01-26T01:43:44Z",
- "expires_at": "2025-03-14T06:50:54Z",
+ "tested_at": "2025-03-02T01:45:14Z",
+ "expires_at": "2025-05-14T23:35:39Z",
"valid": true,
"error": null
},
@@ -294,16 +249,39 @@
"timings": {
"redirect": 0,
"namelookup": 19,
- "connection": 3,
- "handshake": 17,
- "response": 24,
- "total": 64
+ "connection": 5,
+ "handshake": 16,
+ "response": 29,
+ "total": 68
}
},
"uptimeGrade": "A",
"apdexGrade": "A"
},
- "nmap": null,
+ "nmap": {
+ "host": "carte-verte.beta.gouv.fr",
+ "protocol": "tcp",
+ "closed_ports": "998",
+ "open_ports": [
+ {
+ "service": {
+ "name": "http",
+ "product": "Vercel",
+ "id": "80",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "https",
+ "product": "Vercel",
+ "id": "443",
+ "vulnerabilities": []
+ }
+ }
+ ],
+ "grade": "A"
+ },
"dependabot": {
"totalCount": 0,
"grade": "A",
@@ -600,7 +578,7 @@
"ip": "carte-verte.beta.gouv.fr/76.76.21.21",
"port": "443",
"severity": "INFO",
- "finding": "04034802349FC7A68EF22A9EC8627CF14F43"
+ "finding": "043F81B252CB76240652243863555F53F406"
},
{
"id": "cert_serialNumberLen",
@@ -614,21 +592,21 @@
"ip": "carte-verte.beta.gouv.fr/76.76.21.21",
"port": "443",
"severity": "INFO",
- "finding": "865850744FA1984528ED85ECA56BC48C41AA88A9"
+ "finding": "6022FD8730581144C53AB9494F2487EEBD923C4A"
},
{
"id": "cert_fingerprintSHA256",
"ip": "carte-verte.beta.gouv.fr/76.76.21.21",
"port": "443",
"severity": "INFO",
- "finding": "1061FA507B9ACCF64826174D9B883E2CD76F86B86688F8A980E2B3552FAC423B"
+ "finding": "927DD2103A948E49B25705EB2D02236C2400FA537C481993E1B1A756BDA2E1F6"
},
{
"id": "cert",
"ip": "carte-verte.beta.gouv.fr/76.76.21.21",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\nMIIFATCCA+mgAwIBAgISBANIAjSfx6aO8iqeyGJ88U9DMA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwHhcNMjQxMjE0MDY1MDU1WhcNMjUwMzE0MDY1MDU0WjAjMSEwHwYDVQQDExhjYXJ0ZS12ZXJ0ZS5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC105FG70famU9buQVv/gRDjLvxWlQ5O9F0Z6tCU3I1yn7TW7hmZfASZ+nWK0SwKg0g2b+XEAXMwSnZyxZI21he3MpzkWuB86BSI7P4ZNYk6CRGWoI5SyfS9/9Qo5lWTQNb6sv8CZJWPgPCXnDQolBs+nsvJG8y7ktuXAfOl2tGFu9zhiVqGQje6ByARGz8e6USH6aOKXYWs6lyRRlIPEPC1eg5zmzek9GK0e2Olnl3VWIkKQroPc1GwGDy/uC6XW2NUV0pirwchqOIosMdCaFLXIGYiePxxOZAZv/y7JtRRbNooxCLl45NMBeEJHT3GdO0cM2VGqX68MXGDfUZCprtAgMBAAGjggIdMIICGTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFNufDot2sLdMhkdsp21ZlcMKraMRMB8GA1UdIwQYMBaAFLu8w0el5LypxsOkcgwQjaI14cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMC5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMC5pLmxlbmNyLm9yZy8wIwYDVR0RBBwwGoIYY2FydGUtdmVydGUuYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA3oWB11AkfGvNy69WN8XngcZM5G7WF2OfjzSnJsnivTcAAAGTxCTKXwAABAMARzBFAiAU3boacYwfcbkNpEYHVSo5WHtF3qoqqBhR/RER0h2CCQIhALhn9V6reCAu3POe36gnr3/s/diUYAZ8iJirX2iN1JleAHcAzPsPaoVxCWX+lZtTzumyfCLphVwNl422qX5UwP5MDbAAAAGTxCTKcwAABAMASDBGAiEAjjv8x84o6VS+nw7hHwpdcoMX5guo6WC6jtihmVuYZ3sCIQDJ95pShOEMtw10Ff0KXRME5uMD1FXBJ9qS/aZbsJZ9tTANBgkqhkiG9w0BAQsFAAOCAQEAzfAuig2lqS9qdppwARNo6M/7PnUpdC4PDE/y44f8Cjz2t8vj9OERnr75PfBNbzA9ffcRnC9u8Eyp7Ekmfe6aAwz40CxECUfKmbjxE+WPyOeQDPOi4CjsLCsE7I6gNWZNsaFPraVXhFX9XCY0SZBT38lamU5Y0pCsyHlFkQnOEG1twwTs6VvSIuC6Jr8Yh8P5dJ+MVcKnjMZzop5bM0u/rwZ1VURZWSW2OaEQoDZShcnE9SnUJu0rz3B+MY2ABarZ+gg6FaJUfspPysj8Kfy5HW313zGuVtMq9YK5sa0p3L6a4qyo4Wp+MsT2E2JpryqxdOnQFigSZHrK7tsjB+vY3g==\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName",
@@ -677,21 +655,21 @@
"ip": "carte-verte.beta.gouv.fr/76.76.21.21",
"port": "443",
"severity": "OK",
- "finding": "47 >= 30 days"
+ "finding": "73 >= 30 days"
},
{
"id": "cert_notBefore",
"ip": "carte-verte.beta.gouv.fr/76.76.21.21",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-14 06:50"
+ "finding": "2025-02-13 23:35"
},
{
"id": "cert_notAfter",
"ip": "carte-verte.beta.gouv.fr/76.76.21.21",
"port": "443",
"severity": "OK",
- "finding": "2025-03-14 06:50"
+ "finding": "2025-05-14 23:35"
},
{
"id": "cert_extlifeSpan",
@@ -719,7 +697,7 @@
"ip": "carte-verte.beta.gouv.fr/76.76.21.21",
"port": "443",
"severity": "INFO",
- "finding": "http://r10.o.lencr.org"
+ "finding": "http://r11.o.lencr.org"
},
{
"id": "OCSP_stapling",
@@ -775,21 +753,21 @@
"ip": "carte-verte.beta.gouv.fr/76.76.21.21",
"port": "443",
"severity": "INFO",
- "finding": "R10 (Let's Encrypt from US)"
+ "finding": "R11 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
"ip": "carte-verte.beta.gouv.fr/76.76.21.21",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
"ip": "carte-verte.beta.gouv.fr/76.76.21.21",
"port": "443",
"severity": "INFO",
- "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
+ "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44"
},
{
"id": "intermediate_cert_notBefore <#1>",
@@ -817,7 +795,7 @@
"ip": "carte-verte.beta.gouv.fr/76.76.21.21",
"port": "443",
"severity": "INFO",
- "finding": "R10 <-- ISRG Root X1"
+ "finding": "R11 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
@@ -838,21 +816,21 @@
"ip": "carte-verte.beta.gouv.fr/76.76.21.21",
"port": "443",
"severity": "INFO",
- "finding": "+4360400 seconds from localtime"
+ "finding": "+7384299 seconds from localtime"
},
{
"id": "HTTP_headerTime",
"ip": "carte-verte.beta.gouv.fr/76.76.21.21",
"port": "443",
"severity": "INFO",
- "finding": "1737856306"
+ "finding": "1740880205"
},
{
"id": "HTTP_headerAge",
"ip": "carte-verte.beta.gouv.fr/76.76.21.21",
"port": "443",
"severity": "INFO",
- "finding": "4360400 seconds"
+ "finding": "7384299 seconds"
},
{
"id": "HSTS_time",
@@ -1116,7 +1094,7 @@
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1061FA507B9ACCF64826174D9B883E2CD76F86B86688F8A980E2B3552FAC423B"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=927DD2103A948E49B25705EB2D02236C2400FA537C481993E1B1A756BDA2E1F6"
},
{
"id": "LOGJAM",
@@ -1492,7 +1470,7 @@
"ip": "carte-verte.beta.gouv.fr/76.76.21.21",
"port": "443",
"severity": "INFO",
- "finding": "44"
+ "finding": "48"
}
],
"thirdparties": {
@@ -1781,7 +1759,7 @@
"zap": {
"@programName": "ZAP",
"@version": "2.16.0",
- "@generated": "Sun, 26 Jan 2025 01:46:56",
+ "@generated": "Sun, 2 Mar 2025 01:48:08",
"site": [
{
"@name": "https://carte-verte.beta.gouv.fr",
@@ -1790,25 +1768,32 @@
"@ssl": "true",
"alerts": [
{
- "name": "Content Security Policy (CSP) Header Not Set",
+ "name": "CSP: script-src unsafe-inline",
"riskcode": "2",
"confidence": "3",
"riskdesc": "Medium (High)",
- "desc": "Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.
"
+ "desc": "Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.
"
},
{
- "name": "Permissions Policy Header Not Set",
- "riskcode": "1",
+ "name": "CSP: style-src unsafe-inline",
+ "riskcode": "2",
+ "confidence": "3",
+ "riskdesc": "Medium (High)",
+ "desc": "Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.
"
+ },
+ {
+ "name": "Cross-Domain Misconfiguration",
+ "riskcode": "2",
"confidence": "2",
- "riskdesc": "Low (Medium)",
- "desc": "Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.
"
+ "riskdesc": "Medium (Medium)",
+ "desc": "Web browser data loading may be possible, due to a Cross Origin Resource Sharing (CORS) misconfiguration on the web server.
"
},
{
- "name": "Strict-Transport-Security Header Not Set",
+ "name": "Insufficient Site Isolation Against Spectre Vulnerability",
"riskcode": "1",
- "confidence": "3",
- "riskdesc": "Low (High)",
- "desc": "HTTP Strict Transport Security (HSTS) is a web security policy mechanism whereby a web server declares that complying user agents (such as a web browser) are to interact with it using only secure HTTPS connections (i.e. HTTP layered over TLS/SSL). HSTS is an IETF standards track protocol and is specified in RFC 6797.
"
+ "confidence": "2",
+ "riskdesc": "Low (Medium)",
+ "desc": "Cross-Origin-Embedder-Policy header is a response header that prevents a document from loading any cross-origin resources that don't explicitly grant the document permission (using CORP or CORS).
"
},
{
"name": "Timestamp Disclosure - Unix",
@@ -1825,18 +1810,25 @@
"desc": "Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).
"
},
{
- "name": "Modern Web Application",
+ "name": "Information Disclosure - Suspicious Comments",
"riskcode": "0",
- "confidence": "2",
- "riskdesc": "Informational (Medium)",
- "desc": "The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.
"
+ "confidence": "1",
+ "riskdesc": "Informational (Low)",
+ "desc": "The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.
"
},
{
- "name": "Non-Storable Content",
+ "name": "Re-examine Cache-control Directives",
+ "riskcode": "0",
+ "confidence": "1",
+ "riskdesc": "Informational (Low)",
+ "desc": "The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.
"
+ },
+ {
+ "name": "Retrieved from Cache",
"riskcode": "0",
"confidence": "2",
"riskdesc": "Informational (Medium)",
- "desc": "The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.
"
+ "desc": "The content was retrieved from a shared cache. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.
"
},
{
"name": "Sec-Fetch-Dest Header is Missing",
@@ -1865,6 +1857,20 @@
"confidence": "3",
"riskdesc": "Informational (High)",
"desc": "Specifies if a navigation request was initiated by a user.
"
+ },
+ {
+ "name": "Storable and Cacheable Content",
+ "riskcode": "0",
+ "confidence": "2",
+ "riskdesc": "Informational (Medium)",
+ "desc": "The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.
"
+ },
+ {
+ "name": "Storable but Non-Cacheable Content",
+ "riskcode": "0",
+ "confidence": "2",
+ "riskdesc": "Informational (Medium)",
+ "desc": "The response contents are storable by caching components such as proxy servers, but will not be retrieved directly from the cache, without validating the request upstream, in response to similar requests from other users.
"
}
]
}
@@ -1872,6 +1878,41 @@
"sequences": []
},
"nuclei": [
+ {
+ "template": "dns/caa-fingerprint.yaml",
+ "template-url": "https://templates.nuclei.sh/public/caa-fingerprint",
+ "template-id": "caa-fingerprint",
+ "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml",
+ "info": {
+ "name": "CAA Record",
+ "author": [
+ "pdteam"
+ ],
+ "tags": [
+ "dns",
+ "caa"
+ ],
+ "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.",
+ "reference": [
+ "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record"
+ ],
+ "severity": "info",
+ "metadata": {
+ "max-request": 1
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ]
+ }
+ },
+ "type": "dns",
+ "host": "carte-verte.beta.gouv.fr.",
+ "matched-at": "carte-verte.beta.gouv.fr",
+ "timestamp": "2025-03-02T01:52:36.772592731Z",
+ "matcher-status": true
+ },
{
"template": "dns/spf-record-detect.yaml",
"template-url": "https://templates.nuclei.sh/public/spf-record-detect",
@@ -1901,7 +1942,7 @@
"extracted-results": [
"v=spf1 include:spf.mailjet.com include:mx.ovh.com -all\""
],
- "timestamp": "2025-01-26T01:39:14.117007856Z",
+ "timestamp": "2025-03-02T01:52:36.783477558Z",
"matcher-status": true
},
{
@@ -1937,29 +1978,30 @@
"host": "carte-verte.beta.gouv.fr.",
"matched-at": "carte-verte.beta.gouv.fr",
"extracted-results": [
- "\"brevo-code:bfcebf08e9daaf2ac6c09a1bb30d8e96\"",
- "\"v=spf1 include:spf.mailjet.com include:mx.ovh.com -all\""
+ "\"v=spf1 include:spf.mailjet.com include:mx.ovh.com -all\"",
+ "\"brevo-code:bfcebf08e9daaf2ac6c09a1bb30d8e96\""
],
- "timestamp": "2025-01-26T01:39:14.117107672Z",
+ "timestamp": "2025-03-02T01:52:36.783591649Z",
"matcher-status": true
},
{
- "template": "dns/caa-fingerprint.yaml",
- "template-url": "https://templates.nuclei.sh/public/caa-fingerprint",
- "template-id": "caa-fingerprint",
- "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml",
+ "template": "dns/dmarc-detect.yaml",
+ "template-url": "https://templates.nuclei.sh/public/dmarc-detect",
+ "template-id": "dmarc-detect",
+ "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml",
"info": {
- "name": "CAA Record",
+ "name": "DNS DMARC - Detect",
"author": [
- "pdteam"
+ "juliosmelo"
],
"tags": [
"dns",
- "caa"
+ "dmarc"
],
- "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.",
+ "description": "DNS DMARC information was detected.\n",
"reference": [
- "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record"
+ "https://dmarc.org/",
+ "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f"
],
"severity": "info",
"metadata": {
@@ -1969,13 +2011,17 @@
"cve-id": null,
"cwe-id": [
"cwe-200"
- ]
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
"type": "dns",
"host": "carte-verte.beta.gouv.fr.",
- "matched-at": "carte-verte.beta.gouv.fr",
- "timestamp": "2025-01-26T01:39:15.095856932Z",
+ "matched-at": "_dmarc.carte-verte.beta.gouv.fr",
+ "extracted-results": [
+ "\"v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com,mailto:contact@carte-verte.beta.gouv.fr; ruf=mailto:contact@carte-verte.beta.gouv.fr\""
+ ],
+ "timestamp": "2025-03-02T01:52:37.7715197Z",
"matcher-status": true
},
{
@@ -2011,7 +2057,7 @@
"ns102.ovh.net.",
"dns102.ovh.net."
],
- "timestamp": "2025-01-26T01:39:15.10794583Z",
+ "timestamp": "2025-03-02T01:52:37.772747965Z",
"matcher-status": true
},
{
@@ -2048,51 +2094,49 @@
"host": "carte-verte.beta.gouv.fr.",
"matched-at": "carte-verte.beta.gouv.fr",
"extracted-results": [
- "100 mx3.mail.ovh.net.",
"1 mx1.mail.ovh.net.",
+ "100 mx3.mail.ovh.net.",
"5 mx2.mail.ovh.net."
],
- "timestamp": "2025-01-26T01:39:15.114940817Z",
+ "timestamp": "2025-03-02T01:52:37.773993099Z",
"matcher-status": true
},
{
- "template": "dns/dmarc-detect.yaml",
- "template-url": "https://templates.nuclei.sh/public/dmarc-detect",
- "template-id": "dmarc-detect",
- "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml",
+ "template": "http/misconfiguration/http-missing-security-headers.yaml",
+ "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
+ "template-id": "http-missing-security-headers",
+ "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
"info": {
- "name": "DNS DMARC - Detect",
+ "name": "HTTP Missing Security Headers",
"author": [
- "juliosmelo"
+ "socketz",
+ "geeknik",
+ "g4l1t0",
+ "convisoappsec",
+ "kurohost",
+ "dawid-czarnecki",
+ "forgedhallpass",
+ "jub0bs",
+ "userdehghani"
],
"tags": [
- "dns",
- "dmarc"
- ],
- "description": "DNS DMARC information was detected.\n",
- "reference": [
- "https://dmarc.org/",
- "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f"
+ "misconfig",
+ "headers",
+ "generic"
],
+ "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
"severity": "info",
"metadata": {
"max-request": 1
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "type": "dns",
- "host": "carte-verte.beta.gouv.fr.",
- "matched-at": "_dmarc.carte-verte.beta.gouv.fr",
- "extracted-results": [
- "\"v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com,mailto:contact@carte-verte.beta.gouv.fr; ruf=mailto:contact@carte-verte.beta.gouv.fr\""
- ],
- "timestamp": "2025-01-26T01:39:15.138035051Z",
+ "matcher-name": "cross-origin-resource-policy",
+ "type": "http",
+ "host": "https://carte-verte.beta.gouv.fr",
+ "matched-at": "https://carte-verte.beta.gouv.fr",
+ "ip": "76.76.21.21",
+ "timestamp": "2025-03-02T01:53:13.625092219Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.beta.gouv.fr'",
"matcher-status": true
},
{
@@ -2124,12 +2168,12 @@
"max-request": 1
}
},
- "matcher-name": "cross-origin-opener-policy",
+ "matcher-name": "strict-transport-security",
"type": "http",
"host": "https://carte-verte.beta.gouv.fr",
"matched-at": "https://carte-verte.beta.gouv.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:39:50.132892598Z",
+ "timestamp": "2025-03-02T01:53:13.625375594Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.beta.gouv.fr'",
"matcher-status": true
},
@@ -2162,12 +2206,12 @@
"max-request": 1
}
},
- "matcher-name": "strict-transport-security",
+ "matcher-name": "content-security-policy",
"type": "http",
"host": "https://carte-verte.beta.gouv.fr",
"matched-at": "https://carte-verte.beta.gouv.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:39:50.132932723Z",
+ "timestamp": "2025-03-02T01:53:13.625403186Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.beta.gouv.fr'",
"matcher-status": true
},
@@ -2200,12 +2244,12 @@
"max-request": 1
}
},
- "matcher-name": "content-security-policy",
+ "matcher-name": "x-permitted-cross-domain-policies",
"type": "http",
"host": "https://carte-verte.beta.gouv.fr",
"matched-at": "https://carte-verte.beta.gouv.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:39:50.132943884Z",
+ "timestamp": "2025-03-02T01:53:13.625419255Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.beta.gouv.fr'",
"matcher-status": true
},
@@ -2238,12 +2282,12 @@
"max-request": 1
}
},
- "matcher-name": "x-content-type-options",
+ "matcher-name": "referrer-policy",
"type": "http",
"host": "https://carte-verte.beta.gouv.fr",
"matched-at": "https://carte-verte.beta.gouv.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:39:50.132954904Z",
+ "timestamp": "2025-03-02T01:53:13.625434263Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.beta.gouv.fr'",
"matcher-status": true
},
@@ -2281,7 +2325,7 @@
"host": "https://carte-verte.beta.gouv.fr",
"matched-at": "https://carte-verte.beta.gouv.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:39:50.132963881Z",
+ "timestamp": "2025-03-02T01:53:13.625448269Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.beta.gouv.fr'",
"matcher-status": true
},
@@ -2319,7 +2363,7 @@
"host": "https://carte-verte.beta.gouv.fr",
"matched-at": "https://carte-verte.beta.gouv.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:39:50.132972697Z",
+ "timestamp": "2025-03-02T01:53:13.625461394Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.beta.gouv.fr'",
"matcher-status": true
},
@@ -2352,12 +2396,12 @@
"max-request": 1
}
},
- "matcher-name": "permissions-policy",
+ "matcher-name": "cross-origin-opener-policy",
"type": "http",
"host": "https://carte-verte.beta.gouv.fr",
"matched-at": "https://carte-verte.beta.gouv.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:39:50.132980823Z",
+ "timestamp": "2025-03-02T01:53:13.625474959Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.beta.gouv.fr'",
"matcher-status": true
},
@@ -2390,50 +2434,12 @@
"max-request": 1
}
},
- "matcher-name": "x-frame-options",
- "type": "http",
- "host": "https://carte-verte.beta.gouv.fr",
- "matched-at": "https://carte-verte.beta.gouv.fr",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:39:50.132989549Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.beta.gouv.fr'",
- "matcher-status": true
- },
- {
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
- "info": {
- "name": "HTTP Missing Security Headers",
- "author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
- ],
- "tags": [
- "misconfig",
- "headers",
- "generic"
- ],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
- "severity": "info",
- "metadata": {
- "max-request": 1
- }
- },
- "matcher-name": "x-permitted-cross-domain-policies",
+ "matcher-name": "permissions-policy",
"type": "http",
"host": "https://carte-verte.beta.gouv.fr",
"matched-at": "https://carte-verte.beta.gouv.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:39:50.133004297Z",
+ "timestamp": "2025-03-02T01:53:13.625489045Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.beta.gouv.fr'",
"matcher-status": true
},
@@ -2466,12 +2472,12 @@
"max-request": 1
}
},
- "matcher-name": "referrer-policy",
+ "matcher-name": "x-frame-options",
"type": "http",
"host": "https://carte-verte.beta.gouv.fr",
"matched-at": "https://carte-verte.beta.gouv.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:39:50.133013043Z",
+ "timestamp": "2025-03-02T01:53:13.625504784Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.beta.gouv.fr'",
"matcher-status": true
},
@@ -2504,12 +2510,12 @@
"max-request": 1
}
},
- "matcher-name": "cross-origin-resource-policy",
+ "matcher-name": "x-content-type-options",
"type": "http",
"host": "https://carte-verte.beta.gouv.fr",
"matched-at": "https://carte-verte.beta.gouv.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:39:50.133021098Z",
+ "timestamp": "2025-03-02T01:53:13.625520042Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.beta.gouv.fr'",
"matcher-status": true
},
@@ -2540,7 +2546,7 @@
"Let's Encrypt"
],
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:45:05.132535263Z",
+ "timestamp": "2025-03-02T01:58:31.89863848Z",
"matcher-status": true
},
{
@@ -2570,7 +2576,7 @@
"carte-verte.beta.gouv.fr"
],
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:45:05.132681156Z",
+ "timestamp": "2025-03-02T01:58:31.898801182Z",
"matcher-status": true
},
{
@@ -2601,7 +2607,7 @@
"tls12"
],
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:45:05.701490767Z",
+ "timestamp": "2025-03-02T01:58:33.277707694Z",
"matcher-status": true
},
{
@@ -2632,7 +2638,7 @@
"tls13"
],
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:45:05.74067813Z",
+ "timestamp": "2025-03-02T01:58:33.320834799Z",
"matcher-status": true
}
],
@@ -2640,7 +2646,7 @@
{
"requestedUrl": "https://carte-verte.beta.gouv.fr/",
"finalUrl": "https://carte-verte.beta.gouv.fr/",
- "fetchTime": "2025-01-26T01:51:15.498Z",
+ "fetchTime": "2025-03-02T01:48:25.681Z",
"runWarnings": [],
"categories": {
"performance": {
@@ -2703,53 +2709,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 1219,
+ "numericValue": 1209,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 1219,
- "firstMeaningfulPaint": 1219,
- "largestContentfulPaint": 7594,
- "interactive": 1219,
- "speedIndex": 1219,
+ "firstContentfulPaint": 1209,
+ "firstMeaningfulPaint": 1209,
+ "largestContentfulPaint": 7509,
+ "interactive": 1209,
+ "speedIndex": 1209,
"totalBlockingTime": 0,
"maxPotentialFID": 16,
"cumulativeLayoutShift": 0.0000895139906141493,
"cumulativeLayoutShiftMainFrame": 0.0000895139906141493,
"totalCumulativeLayoutShift": 0.0000895139906141493,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 876124477,
+ "observedTimeOriginTs": 367865476,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 876124477,
- "observedFirstPaint": 429,
- "observedFirstPaintTs": 876553218,
- "observedFirstContentfulPaint": 429,
- "observedFirstContentfulPaintTs": 876553218,
- "observedFirstContentfulPaintAllFrames": 429,
- "observedFirstContentfulPaintAllFramesTs": 876553218,
- "observedFirstMeaningfulPaint": 429,
- "observedFirstMeaningfulPaintTs": 876553218,
- "observedLargestContentfulPaint": 522,
- "observedLargestContentfulPaintTs": 876646934,
- "observedLargestContentfulPaintAllFrames": 522,
- "observedLargestContentfulPaintAllFramesTs": 876646934,
- "observedTraceEnd": 3001,
- "observedTraceEndTs": 879125308,
- "observedLoad": 604,
- "observedLoadTs": 876728493,
- "observedDomContentLoaded": 418,
- "observedDomContentLoadedTs": 876542191,
+ "observedNavigationStartTs": 367865476,
+ "observedFirstPaint": 241,
+ "observedFirstPaintTs": 368106800,
+ "observedFirstContentfulPaint": 241,
+ "observedFirstContentfulPaintTs": 368106800,
+ "observedFirstContentfulPaintAllFrames": 241,
+ "observedFirstContentfulPaintAllFramesTs": 368106800,
+ "observedFirstMeaningfulPaint": 241,
+ "observedFirstMeaningfulPaintTs": 368106800,
+ "observedLargestContentfulPaint": 297,
+ "observedLargestContentfulPaintTs": 368162143,
+ "observedLargestContentfulPaintAllFrames": 297,
+ "observedLargestContentfulPaintAllFramesTs": 368162143,
+ "observedTraceEnd": 2704,
+ "observedTraceEndTs": 370569478,
+ "observedLoad": 355,
+ "observedLoadTs": 368220779,
+ "observedDomContentLoaded": 247,
+ "observedDomContentLoadedTs": 368112468,
"observedCumulativeLayoutShift": 0.0000895139906141493,
"observedCumulativeLayoutShiftMainFrame": 0.0000895139906141493,
"observedTotalCumulativeLayoutShift": 0.0000895139906141493,
- "observedFirstVisualChange": 440,
- "observedFirstVisualChangeTs": 876564477,
- "observedLastVisualChange": 740,
- "observedLastVisualChangeTs": 876864477,
- "observedSpeedIndex": 452,
- "observedSpeedIndexTs": 876576269
+ "observedFirstVisualChange": 253,
+ "observedFirstVisualChangeTs": 368118476,
+ "observedLastVisualChange": 569,
+ "observedLastVisualChangeTs": 368434476,
+ "observedSpeedIndex": 261,
+ "observedSpeedIndexTs": 368126774
},
{
"lcpInvalidated": false
@@ -2771,18 +2777,18 @@
"numScripts": 15,
"numStylesheets": 3,
"numFonts": 9,
- "numTasks": 34,
+ "numTasks": 35,
"numTasksOver10ms": 1,
"numTasksOver25ms": 1,
- "numTasksOver50ms": 0,
- "numTasksOver100ms": 0,
- "numTasksOver500ms": 0,
- "rtt": 1.9610000000000003,
- "throughput": 93204382.95790388,
- "maxRtt": 106.91900000000001,
- "maxServerLatency": 18.589,
- "totalByteWeight": 3531083,
- "totalTaskTime": 37.82100000000002,
+ "numTasksOver50ms": 1,
+ "numTasksOver100ms": 1,
+ "numTasksOver500ms": 1,
+ "rtt": 6.109,
+ "throughput": 106915817.95810638,
+ "maxRtt": 86.167,
+ "maxServerLatency": 8.774000000000001,
+ "totalByteWeight": 3531229,
+ "totalTaskTime": 2649.268,
"mainDocumentTransferSize": 14795
}
]
@@ -2808,24 +2814,27 @@
"uri": "budget"
},
"declaration-a11y": {
- "mention": null
+ "mention": "Accessibilité : non conforme",
+ "declarationUrl": "https://carte-verte.beta.gouv.fr/accessibilite"
},
"declaration-rgpd": [
{
"slug": "ml",
- "mention": null,
- "maxScore": 0,
- "score": 0,
+ "mention": "Mentions légales",
+ "maxScore": 4,
+ "score": 4,
"missingWords": [],
- "missingTrackers": []
+ "missingTrackers": [],
+ "declarationUrl": "https://carte-verte.beta.gouv.fr/mentions-legales"
},
{
"slug": "pc",
- "mention": null,
- "maxScore": 0,
- "score": 0,
+ "mention": "Données personnelles",
+ "maxScore": 4,
+ "score": 4,
"missingWords": [],
- "missingTrackers": []
+ "missingTrackers": [],
+ "declarationUrl": "https://carte-verte.beta.gouv.fr/politique-de-confidentialite#cookies"
}
],
"betagouv": {
@@ -2846,15 +2855,20 @@
"date": "2023-04-12",
"comment": "Comité de fin d'investigation"
},
+ {
+ "name": "committee",
+ "date": "2023-10-13",
+ "comment": "Validation du format de l'expérimentation"
+ },
{
"name": "committee",
"date": "2024-07-01",
- "comment": ""
+ "comment": "Validation des prestations et stratégique d'acquisition"
},
{
"name": "committee",
- "date": "2024-10-13",
- "comment": ""
+ "date": "2025-01-21",
+ "comment": "Communication des premiers résultats + exploration des modèles de financement"
}
],
"phases": [
@@ -2894,15 +2908,15 @@
"width": 1920,
"height": 1080,
"url": "https://carte-verte.beta.gouv.fr",
- "size": 3731.436,
- "nodes": 381,
+ "size": 3730.987,
+ "nodes": 380,
"requests": 52,
"grade": "C",
"score": 60,
"ges": 1.8,
"water": 2.7,
"ecoindex_version": "5.4.2",
- "date": "2024-12-01 02:12:16.628542",
+ "date": "2025-03-02 01:46:39.038867",
"page_type": "website"
}
],
@@ -2917,18 +2931,21 @@
"apdexGrade": "A",
"uptime": 100,
"uptimeGrade": "A",
+ "nmapGrade": "A",
+ "nmapOpenPortsCount": 2,
+ "nmapOpenPortsGrade": "A",
"dependabotGrade": "A",
"dependabotCount": 0,
"codescanCount": 0,
"codescanGrade": "A",
- "testsslExpireSoon": true,
- "testsslExpireDate": "2025-03-14T06:50:00.000Z",
+ "testsslExpireSoon": false,
+ "testsslExpireDate": "2025-05-14T23:35:00.000Z",
"testsslGrade": "A+",
"cookiesGrade": null,
"cookiesCount": null,
"trackersGrade": null,
"trackersCount": null,
- "zapCount": 4,
+ "zapCount": 5,
"zapGrade": "D",
"lighthouse_performance": 0.76,
"lighthouse_performanceGrade": "B",
@@ -2943,9 +2960,9 @@
"statsGrade": "F",
"githubRepositoryGrade": "A",
"budgetPageGrade": "F",
- "declaration-a11y": "F",
- "declaration-rgpd-ml": "F",
- "declaration-rgpd-pc": "F",
+ "declaration-a11y": "C",
+ "declaration-rgpd-ml": "A",
+ "declaration-rgpd-pc": "A",
"ecoindexGrade": "C",
"dsfrGrade": "A"
}
@@ -2987,258 +3004,220 @@
}
},
"http": {
- "url": "https://carte-verte.ademe.vercel.app",
- "algorithm_version": 3,
- "end_time": "Sun, 20 Oct 2024 01:59:46 GMT",
- "grade": "B+",
- "hidden": false,
- "likelihood_indicator": "MEDIUM",
- "response_headers": {
- "Access-Control-Allow-Origin": "*",
- "Age": "2568618",
- "Cache-Control": "public, max-age=0, must-revalidate",
- "Content-Disposition": "inline",
- "Content-Encoding": "gzip",
- "Content-Security-Policy": "default-src 'none'; connect-src 'self' https://*.gouv.fr; font-src 'self'; media-src 'self'; img-src 'self' data:; script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; style-src 'self' 'unsafe-inline'; object-src 'self' data:; frame-ancestors 'self'; base-uri 'self' https://*.gouv.fr; form-action 'self' https://*.gouv.fr; block-all-mixed-content ; upgrade-insecure-requests ; frame-src 'none';",
- "Content-Type": "text/html; charset=utf-8",
- "Cross-Origin-Embedder-Policy": "credentialless",
- "Cross-Origin-Opener-Policy": "same-origin",
- "Cross-Origin-Resource-Policy": "cross-origin",
- "Date": "Sun, 20 Oct 2024 01:59:45 GMT",
- "Etag": "W/\"737aa066fc241cecccb6f1c8decaa115\"",
- "Permissions-Policy": "fullscreen=(), display-capture=(), camera=(), microphone=(), geolocation=()",
- "Referrer-Policy": "no-referrer, strict-origin-when-cross-origin",
- "Server": "Vercel",
- "Strict-Transport-Security": "max-age=63072000; includeSubDomains; preload",
- "Transfer-Encoding": "chunked",
- "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url",
- "X-Content-Type-Options": "nosniff",
- "X-Frame-Options": "DENY",
- "X-Matched-Path": "/",
- "X-Vercel-Cache": "HIT",
- "X-Vercel-Id": "pdx1::6xnxx-1729389585664-927451c84ade",
- "X-Xss-Protection": "1; mode=block"
- },
- "scan_id": 57047378,
- "score": 80,
- "start_time": "Sun, 20 Oct 2024 01:59:45 GMT",
- "state": "FINISHED",
- "status_code": 200,
- "tests_failed": 1,
- "tests_passed": 9,
- "tests_quantity": 10,
- "details": {
+ "scan": {
+ "algorithmVersion": 4,
+ "grade": "B+",
+ "error": null,
+ "score": 80,
+ "statusCode": 200,
+ "testsFailed": 1,
+ "testsPassed": 9,
+ "testsQuantity": 10,
+ "responseHeaders": {
+ "access-control-allow-origin": "*",
+ "age": "7384349",
+ "cache-control": "public, max-age=0, must-revalidate",
+ "content-disposition": "inline",
+ "content-security-policy": "default-src 'none'; connect-src 'self' https://*.gouv.fr; font-src 'self'; media-src 'self'; img-src 'self' data:; script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; style-src 'self' 'unsafe-inline'; object-src 'self' data:; frame-ancestors 'self'; base-uri 'self' https://*.gouv.fr; form-action 'self' https://*.gouv.fr; block-all-mixed-content ; upgrade-insecure-requests ; frame-src 'none';",
+ "content-type": "text/html; charset=utf-8",
+ "cross-origin-embedder-policy": "credentialless",
+ "cross-origin-opener-policy": "same-origin",
+ "cross-origin-resource-policy": "cross-origin",
+ "date": "Sun, 02 Mar 2025 01:50:10 GMT",
+ "etag": "W/\"a57424f779cc3c23c198fab4de093811\"",
+ "permissions-policy": "fullscreen=(), display-capture=(), camera=(), microphone=(), geolocation=()",
+ "referrer-policy": "no-referrer, strict-origin-when-cross-origin",
+ "server": "Vercel",
+ "strict-transport-security": "max-age=63072000; includeSubDomains; preload",
+ "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url",
+ "x-content-type-options": "nosniff",
+ "x-frame-options": "DENY",
+ "x-matched-path": "/",
+ "x-vercel-cache": "HIT",
+ "x-vercel-id": "iad1::qvdxc-1740880210410-6c92c975c591",
+ "x-xss-protection": "1; mode=block",
+ "connection": "close",
+ "transfer-encoding": "chunked"
+ }
+ },
+ "tests": {
"content-security-policy": {
"expectation": "csp-implemented-with-no-unsafe",
- "name": "content-security-policy",
- "output": {
- "data": {
- "base-uri": [
- "https://*.gouv.fr",
- "'self'"
- ],
- "block-all-mixed-content": [
- "'none'"
- ],
- "connect-src": [
- "https://*.gouv.fr",
- "'self'"
- ],
- "default-src": [
- "'none'"
- ],
- "font-src": [
- "'self'"
- ],
- "form-action": [
- "https://*.gouv.fr",
- "'self'"
- ],
- "frame-ancestors": [
- "'self'"
- ],
- "frame-src": [
- "'none'"
- ],
- "img-src": [
- "data:",
- "'self'"
- ],
- "media-src": [
- "'self'"
- ],
- "object-src": [
- "data:",
- "'self'"
- ],
- "script-src": [
- "'unsafe-inline'",
- "https://stats.beta.gouv.fr",
- "'self'"
- ],
- "style-src": [
- "'unsafe-inline'",
- "'self'"
- ],
- "upgrade-insecure-requests": [
- "'none'"
- ]
- },
- "http": true,
- "meta": false,
- "numPolicies": 1,
- "policy": {
- "antiClickjacking": true,
- "defaultNone": true,
- "insecureBaseUri": false,
- "insecureFormAction": false,
- "insecureSchemeActive": false,
- "insecureSchemePassive": false,
- "strictDynamic": false,
- "unsafeEval": false,
- "unsafeInline": true,
- "unsafeInlineStyle": true,
- "unsafeObjects": false
- }
- },
"pass": false,
"result": "csp-implemented-with-unsafe-inline",
- "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.",
- "score_modifier": -20
+ "scoreModifier": -20,
+ "data": {
+ "default-src": [
+ "'none'"
+ ],
+ "connect-src": [
+ "'self'",
+ "https://*.gouv.fr"
+ ],
+ "font-src": [
+ "'self'"
+ ],
+ "media-src": [
+ "'self'"
+ ],
+ "img-src": [
+ "'self'",
+ "data:"
+ ],
+ "script-src": [
+ "'self'",
+ "'unsafe-inline'",
+ "https://stats.beta.gouv.fr"
+ ],
+ "style-src": [
+ "'self'",
+ "'unsafe-inline'"
+ ],
+ "object-src": [
+ "'self'",
+ "data:"
+ ],
+ "frame-ancestors": [
+ "'self'"
+ ],
+ "base-uri": [
+ "'self'",
+ "https://*.gouv.fr"
+ ],
+ "form-action": [
+ "'self'",
+ "https://*.gouv.fr"
+ ],
+ "block-all-mixed-content": [
+ "'none'"
+ ],
+ "upgrade-insecure-requests": [
+ "'none'"
+ ],
+ "frame-src": [
+ "'none'"
+ ]
+ },
+ "http": true,
+ "meta": false,
+ "policy": {
+ "antiClickjacking": true,
+ "defaultNone": true,
+ "insecureBaseUri": false,
+ "insecureFormAction": false,
+ "insecureSchemeActive": false,
+ "insecureSchemePassive": false,
+ "strictDynamic": false,
+ "unsafeEval": false,
+ "unsafeInline": true,
+ "unsafeInlineStyle": true,
+ "unsafeObjects": false
+ },
+ "numPolicies": 1
},
"cookies": {
"expectation": "cookies-secure-with-httponly-sessions",
- "name": "cookies",
- "output": {
- "data": null,
- "sameSite": null
- },
"pass": true,
"result": "cookies-not-found",
- "score_description": "No cookies detected",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "sameSite": false
},
"cross-origin-resource-sharing": {
"expectation": "cross-origin-resource-sharing-not-implemented",
- "name": "cross-origin-resource-sharing",
- "output": {
- "data": {
- "acao": "*",
- "clientaccesspolicy": null,
- "crossdomain": null
- }
- },
"pass": true,
"result": "cross-origin-resource-sharing-implemented-with-public-access",
- "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "*"
},
"redirection": {
"expectation": "redirection-to-https",
- "name": "redirection",
- "output": {
- "destination": "https://carte-verte.ademe.vercel.app/",
- "redirects": true,
- "route": [
- "http://carte-verte.ademe.vercel.app/",
- "https://carte-verte.ademe.vercel.app/"
- ],
- "status_code": 200
- },
"pass": true,
"result": "redirection-all-redirects-preloaded",
- "score_description": "All hosts redirected to are in the HTTP Strict Transport Security (HSTS) preload list",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "destination": "https://carte-verte.ademe.vercel.app/",
+ "redirects": true,
+ "route": [
+ "http://carte-verte.ademe.vercel.app/",
+ "https://carte-verte.ademe.vercel.app/"
+ ],
+ "statusCode": 200
},
"referrer-policy": {
"expectation": "referrer-policy-private",
- "name": "referrer-policy",
- "output": {
- "data": "no-referrer, strict-origin-when-cross-origin",
- "http": true,
- "meta": false
- },
"pass": true,
"result": "referrer-policy-private",
- "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"",
- "score_modifier": 5
+ "scoreModifier": 5,
+ "data": "no-referrer, strict-origin-when-cross-origin",
+ "http": true,
+ "meta": false
},
"strict-transport-security": {
"expectation": "hsts-implemented-max-age-at-least-six-months",
- "name": "strict-transport-security",
- "output": {
- "data": "max-age=63072000; includeSubDomains; preload",
- "includeSubDomains": true,
- "max-age": 63072000,
- "preload": true,
- "preloaded": true
- },
"pass": true,
"result": "hsts-preloaded",
- "score_description": "Preloaded via the HTTP Strict Transport Security (HSTS) preloading process",
- "score_modifier": 5
+ "scoreModifier": 5,
+ "data": "max-age=63072000; includeSubDomains; preload",
+ "includeSubDomains": true,
+ "maxAge": 63072000,
+ "preload": true,
+ "preloaded": true
},
"subresource-integrity": {
"expectation": "sri-implemented-and-external-scripts-loaded-securely",
- "name": "subresource-integrity",
- "output": {
- "data": {}
- },
"pass": true,
"result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin",
- "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": {}
},
"x-content-type-options": {
"expectation": "x-content-type-options-nosniff",
- "name": "x-content-type-options",
- "output": {
- "data": "nosniff"
- },
"pass": true,
"result": "x-content-type-options-nosniff",
- "score_description": "X-Content-Type-Options header set to \"nosniff\"",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "nosniff"
},
"x-frame-options": {
"expectation": "x-frame-options-sameorigin-or-deny",
- "name": "x-frame-options",
- "output": {
- "data": "DENY"
- },
"pass": true,
"result": "x-frame-options-implemented-via-csp",
- "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive",
- "score_modifier": 5
- },
- "x-xss-protection": {
- "expectation": "x-xss-protection-disabled",
- "name": "x-xss-protection",
- "output": {
- "data": "1; mode=block"
- },
+ "scoreModifier": 5,
+ "data": "DENY"
+ },
+ "cross-origin-resource-policy": {
+ "expectation": "corp-implemented-with-same-site",
"pass": true,
- "result": "x-xss-protection-enabled-mode-block",
- "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"",
- "score_modifier": 0
+ "result": "corp-implemented-with-cross-origin",
+ "scoreModifier": 0,
+ "data": "cross-origin",
+ "http": true,
+ "meta": false
}
}
},
"updownio": {
"token": "1e5e",
"url": "https://carte-verte.ademe.vercel.app",
+ "type": "https",
"alias": "Carte Verte - Staging",
- "last_status": 200,
"uptime": 100,
"down": false,
"down_since": null,
- "up_since": "2024-11-04T16:25:58Z",
+ "up_since": "2025-02-14T00:22:57Z",
"error": null,
"period": 300,
- "apdex_t": 0.5,
"string_match": "",
"enabled": true,
"published": true,
+ "recipients": [
+ "email:3429082144"
+ ],
+ "last_check_at": "2025-03-02T01:59:18Z",
+ "next_check_at": "2025-03-02T02:04:16Z",
+ "created_at": "2023-12-04T21:59:31Z",
+ "mute_until": null,
+ "last_status": 200,
+ "apdex_t": 0.5,
"disabled_locations": [
"lan",
"mia",
@@ -3247,20 +3226,13 @@
"tok",
"syd"
],
- "recipients": [
- "email:3429082144"
- ],
- "last_check_at": "2025-01-26T01:50:49Z",
- "next_check_at": "2025-01-26T01:55:46Z",
- "created_at": "2023-12-04T21:59:31Z",
- "mute_until": null,
- "favicon_url": "https://carte-verte.ademe.vercel.app/_next/static/media/favicon.8c087985.ico",
"custom_headers": {},
+ "favicon_url": "https://carte-verte.ademe.vercel.app/_next/static/media/favicon.8c087985.ico",
"http_verb": "GET/HEAD",
"http_body": "",
"ssl": {
- "tested_at": "2025-01-26T01:35:52Z",
- "expires_at": "2025-03-05T06:42:15Z",
+ "tested_at": "2025-03-02T01:34:24Z",
+ "expires_at": "2025-05-14T04:35:00Z",
"valid": true,
"error": null
},
@@ -3268,17 +3240,40 @@
"apdex": 1,
"timings": {
"redirect": 0,
- "namelookup": 39,
- "connection": 3,
- "handshake": 16,
- "response": 26,
- "total": 84
+ "namelookup": 22,
+ "connection": 7,
+ "handshake": 19,
+ "response": 31,
+ "total": 79
}
},
"uptimeGrade": "A",
"apdexGrade": "A"
},
- "nmap": null,
+ "nmap": {
+ "host": "carte-verte.ademe.vercel.app",
+ "protocol": "tcp",
+ "closed_ports": "998",
+ "open_ports": [
+ {
+ "service": {
+ "name": "http",
+ "product": "Vercel",
+ "id": "80",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "https",
+ "product": "Vercel",
+ "id": "443",
+ "vulnerabilities": []
+ }
+ }
+ ],
+ "grade": "A"
+ },
"dependabot": {
"totalCount": 0,
"grade": "A",
@@ -3307,77 +3302,77 @@
"testssl": [
{
"id": "service",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -3385,7 +3380,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -3393,7 +3388,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -3401,7 +3396,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -3409,7 +3404,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -3417,7 +3412,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -3425,553 +3420,553 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "cipher_order",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "server -- TLS 1.3 client determined"
},
{
"id": "FS",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "'status request/#5' 'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'"
},
{
"id": "TLS_session_ticket",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "no -- no lifetime advertised"
},
{
"id": "SSL_sessionID_support",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "yes"
},
{
"id": "sessionresumption_ticket",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "not supported"
},
{
"id": "sessionresumption_ID",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "not supported"
},
{
"id": "TLS_timestamp",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "random"
},
{
"id": "certificate_compression",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "none"
},
{
"id": "clientAuth",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "none"
},
{
"id": "cert_numbers",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "1"
},
{
"id": "cert_signatureAlgorithm",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "SHA256 with RSA"
},
{
"id": "cert_keySize",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "RSA 2048 bits (exponent is 65537)"
},
{
"id": "cert_keyUsage",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "Digital Signature, Key Encipherment"
},
{
"id": "cert_extKeyUsage",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLS Web Server Authentication, TLS Web Client Authentication"
},
{
"id": "cert_serialNumber",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
- "finding": "04487489E069B256A24C6ABAE63250FDBA76"
+ "finding": "041DE9107212240D954400F90CA50DDD2264"
},
{
"id": "cert_serialNumberLen",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "18"
},
{
"id": "cert_fingerprintSHA1",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
- "finding": "CBF8CDB57B7E2730621876762E7646B349F43464"
+ "finding": "57D4508834F47287552DF9F1DC35D8ADBCCAF2B9"
},
{
"id": "cert_fingerprintSHA256",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
- "finding": "FACC342AAD4270AD1901FDEDF02DACCDEF9FA1B9008DA42342AE1C11ADB41ED0"
+ "finding": "1B8993057315C49E69244E12B24724FC35A25C7C52F21468FEE6A0CEAE5058A2"
},
{
"id": "cert",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "*.ademe.vercel.app"
},
{
"id": "cert_commonName_wo_SNI",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "no-sni.vercel-infra.com"
},
{
"id": "cert_subjectAltName",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "*.ademe.vercel.app"
},
{
"id": "cert_trust",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "Ok via SAN wildcard and CN wildcard (SNI mandatory)"
},
{
"id": "cert_trust_wildcard",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "LOW",
"finding": "trust is via wildcard"
},
{
"id": "cert_chain_of_trust",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "passed."
},
{
"id": "cert_certificatePolicies_EV",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_expirationStatus",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
- "finding": "38 >= 30 days"
+ "finding": "73 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-05 06:42"
+ "finding": "2025-02-13 04:35"
},
{
"id": "cert_notAfter",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
- "finding": "2025-03-05 06:42"
+ "finding": "2025-05-14 04:35"
},
{
"id": "cert_extlifeSpan",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "http://r10.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cert_ocspRevoked",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "not revoked"
},
{
"id": "cert_mustStapleExtension",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "issue=letsencrypt.org"
},
{
"id": "certificate_transparency",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "R10 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "R10 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
- "finding": "+4360581 seconds from localtime"
+ "finding": "+7384419 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
- "finding": "1737856442"
+ "finding": "1740880280"
},
{
"id": "HTTP_headerAge",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
- "finding": "4360581 seconds"
+ "finding": "7384419 seconds"
},
{
"id": "HSTS_time",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "730 days (=63072000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "includes subdomains"
},
{
"id": "HSTS_preload",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "domain IS marked for preloading"
},
{
"id": "HPKP",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "Vercel"
},
{
"id": "banner_application",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "DENY"
},
{
"id": "X-Content-Type-Options",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "default-src 'none'; connect-src 'self' https://*.gouv.fr; font-src 'self'; media-src 'self'; img-src 'self' data:; script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; style-src 'self' 'unsafe-inline'; object-src 'self' data:; frame-ancestors 'self'; base-uri 'self' https://*.gouv.fr; form-action 'self' https://*.gouv.fr; block-all-mixed-content ; upgrade-insecure-requests ; frame-src 'none';"
},
{
"id": "Permissions-Policy",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "fullscreen=(), display-capture=(), camera=(), microphone=(), geolocation=()"
},
{
"id": "Cross-Origin-Opener-Policy",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "Cross-Origin-Resource-Policy",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "cross-origin"
},
{
"id": "Cross-Origin-Embedder-Policy",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "credentialless"
},
{
"id": "X-XSS-Protection",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "1; mode=block"
},
{
"id": "Access-Control-Allow-Origin",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "*"
},
{
"id": "Permissions-Policy",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "fullscreen=(), display-capture=(), camera=(), microphone=(), geolocation=()"
},
{
"id": "Referrer-Policy",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "no-referrer, strict-origin-when-cross-origin"
},
{
"id": "Cache-Control",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "public, max-age=0, must-revalidate"
},
{
"id": "banner_reverseproxy",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -3979,7 +3974,7 @@
},
{
"id": "heartbleed",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -3988,7 +3983,7 @@
},
{
"id": "CCS",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -3997,7 +3992,7 @@
},
{
"id": "ticketbleed",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -4006,7 +4001,7 @@
},
{
"id": "ROBOT",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -4015,7 +4010,7 @@
},
{
"id": "secure_renego",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -4023,7 +4018,7 @@
},
{
"id": "secure_client_renego",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -4032,7 +4027,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -4041,7 +4036,7 @@
},
{
"id": "BREACH",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -4050,7 +4045,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -4059,14 +4054,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -4075,7 +4070,7 @@
},
{
"id": "FREAK",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -4084,7 +4079,7 @@
},
{
"id": "DROWN",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -4093,16 +4088,16 @@
},
{
"id": "DROWN_hint",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=FACC342AAD4270AD1901FDEDF02DACCDEF9FA1B9008DA42342AE1C11ADB41ED0"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1B8993057315C49E69244E12B24724FC35A25C7C52F21468FEE6A0CEAE5058A2"
},
{
"id": "LOGJAM",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -4111,7 +4106,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -4120,7 +4115,7 @@
},
{
"id": "BEAST",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -4129,7 +4124,7 @@
},
{
"id": "LUCKY13",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -4138,7 +4133,7 @@
},
{
"id": "winshock",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -4147,7 +4142,7 @@
},
{
"id": "RC4",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -4156,392 +4151,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_81",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_90",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-android_X",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-android_11",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-android_12",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-java1102",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-java1703",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-go_1178",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "rating_spec",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "carte-verte.ademe.vercel.app/216.198.79.129",
+ "ip": "carte-verte.ademe.vercel.app/64.29.17.65",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -4549,7 +4544,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -4557,7 +4552,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -4565,7 +4560,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -4573,7 +4568,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -4581,7 +4576,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -4589,553 +4584,553 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "cipher_order",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "server -- TLS 1.3 client determined"
},
{
"id": "FS",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "'status request/#5' 'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'"
},
{
"id": "TLS_session_ticket",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "no -- no lifetime advertised"
},
{
"id": "SSL_sessionID_support",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "yes"
},
{
"id": "sessionresumption_ticket",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "not supported"
},
{
"id": "sessionresumption_ID",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "not supported"
},
{
"id": "TLS_timestamp",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "random"
},
{
"id": "certificate_compression",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "none"
},
{
"id": "clientAuth",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "none"
},
{
"id": "cert_numbers",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "1"
},
{
"id": "cert_signatureAlgorithm",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "SHA256 with RSA"
},
{
"id": "cert_keySize",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "RSA 2048 bits (exponent is 65537)"
},
{
"id": "cert_keyUsage",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "Digital Signature, Key Encipherment"
},
{
"id": "cert_extKeyUsage",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLS Web Server Authentication, TLS Web Client Authentication"
},
{
"id": "cert_serialNumber",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
- "finding": "04487489E069B256A24C6ABAE63250FDBA76"
+ "finding": "041DE9107212240D954400F90CA50DDD2264"
},
{
"id": "cert_serialNumberLen",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "18"
},
{
"id": "cert_fingerprintSHA1",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
- "finding": "CBF8CDB57B7E2730621876762E7646B349F43464"
+ "finding": "57D4508834F47287552DF9F1DC35D8ADBCCAF2B9"
},
{
"id": "cert_fingerprintSHA256",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
- "finding": "FACC342AAD4270AD1901FDEDF02DACCDEF9FA1B9008DA42342AE1C11ADB41ED0"
+ "finding": "1B8993057315C49E69244E12B24724FC35A25C7C52F21468FEE6A0CEAE5058A2"
},
{
"id": "cert",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\nMIIE9DCCA9ygAwIBAgISBEh0ieBpslaiTGq65jJQ/bp2MA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwHhcNMjQxMjA1MDY0MjE2WhcNMjUwMzA1MDY0MjE1WjAdMRswGQYDVQQDDBIqLmFkZW1lLnZlcmNlbC5hcHAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU6cuoTXqdo3ryDr+lO7LNEd0ZzPQflfbLkjKe9WXW9o90IwTa+Z/nsIi+5RhysKf0RGDbgh9eU0l/UeGbwrrjLTNGyBIFSQgYQqS3dTPeURaDXa4eYfP275U1q0Ob/HnbJlIhSGkXdHdFFrK4qUqFHZWlbhZxYykqviXPc4rCYRjYU4WWOrAGWJLg9vqhB31x618rb6MrxJy4VN46N/cwIo/J2ATymm5o7ozFJIk9t/jln+QvDrPguMsQvjKnR5nOU/9JCHuqDKxszad4EIzIQZOHDuGux+FYQvrx8WqNnPxCa6gQRuaiDrkOb7G1jZhoYnFKEQxvCoJfq++98eA7AgMBAAGjggIWMIICEjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFEd5YZ70Fb/7kJOHazDzTq1eoZbmMB8GA1UdIwQYMBaAFLu8w0el5LypxsOkcgwQjaI14cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMC5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMC5pLmxlbmNyLm9yZy8wHQYDVR0RBBYwFIISKi5hZGVtZS52ZXJjZWwuYXBwMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGTlcOkugAABAMARzBFAiAOlNlWp2C60XL3ABOZgpgFhnp9gYds81FrbozKe5U90gIhAO7FUAxfOLbTa2FWYezwIkLLERpNHqvQsF/XY3yXsP6OAHYAouMK5EXvva2bfjjtR2d3U9eCW4SU1yteGyzEuVCkR+cAAAGTlcOsgwAABAMARzBFAiBicSz9aK2H/vtu/ZW8BCdgXNnsqZqC+rKnxuhVyup2ngIhAMgzMCNtZ26vr/Z7r8Sws8Nc6/zOddeOKpn+vWqLqpwEMA0GCSqGSIb3DQEBCwUAA4IBAQCqFS3jIjfpEuGjcjiTHBt0EvmZTKqZRyJVoi9C/Kb8G26gFsarq5tJBRaie+ICy1P9/vcqYehnaRWf0Ob9UaO8x9IuTqLlvG9pwHjLdSMf2iif75TmY5WkUWIbs3X4GyCfHdo88YkgJAogfxFBGMl2sKT6FiXYhzg11npCg7Wwy0xK+W+d3CtbLGr1gtXg4TRzy8RxNu3Ob0NZ6w7xSdREdMkNl+dC43PYhnWn2RMZrIkdC5Yzqiby+3NX0pad222P39JA/Elq6cGIeF+sUPh6nLdyZN3a+lPZZe9ecoYUoQUSC1ka+2IBk4UmkSJFPIsqOdiD06FUqOpRmXH1cj0/\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "*.ademe.vercel.app"
},
{
"id": "cert_commonName_wo_SNI",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "no-sni.vercel-infra.com"
},
{
"id": "cert_subjectAltName",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "*.ademe.vercel.app"
},
{
"id": "cert_trust",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "Ok via SAN wildcard and CN wildcard (SNI mandatory)"
},
{
"id": "cert_trust_wildcard",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "LOW",
"finding": "trust is via wildcard"
},
{
"id": "cert_chain_of_trust",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "passed."
},
{
"id": "cert_certificatePolicies_EV",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_expirationStatus",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
- "finding": "38 >= 30 days"
+ "finding": "73 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-05 06:42"
+ "finding": "2025-02-13 04:35"
},
{
"id": "cert_notAfter",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
- "finding": "2025-03-05 06:42"
+ "finding": "2025-05-14 04:35"
},
{
"id": "cert_extlifeSpan",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "http://r10.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cert_ocspRevoked",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "not revoked"
},
{
"id": "cert_mustStapleExtension",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "issue=letsencrypt.org"
},
{
"id": "certificate_transparency",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "R10 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "R10 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
- "finding": "+4360620 seconds from localtime"
+ "finding": "+7384458 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
- "finding": "1737856481"
+ "finding": "1740880319"
},
{
"id": "HTTP_headerAge",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
- "finding": "4360620 seconds"
+ "finding": "7384458 seconds"
},
{
"id": "HSTS_time",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "730 days (=63072000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "includes subdomains"
},
{
"id": "HSTS_preload",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "domain IS marked for preloading"
},
{
"id": "HPKP",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "Vercel"
},
{
"id": "banner_application",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "DENY"
},
{
"id": "X-Content-Type-Options",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "default-src 'none'; connect-src 'self' https://*.gouv.fr; font-src 'self'; media-src 'self'; img-src 'self' data:; script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; style-src 'self' 'unsafe-inline'; object-src 'self' data:; frame-ancestors 'self'; base-uri 'self' https://*.gouv.fr; form-action 'self' https://*.gouv.fr; block-all-mixed-content ; upgrade-insecure-requests ; frame-src 'none';"
},
{
"id": "Permissions-Policy",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "fullscreen=(), display-capture=(), camera=(), microphone=(), geolocation=()"
},
{
"id": "Cross-Origin-Opener-Policy",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "Cross-Origin-Resource-Policy",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "cross-origin"
},
{
"id": "Cross-Origin-Embedder-Policy",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "credentialless"
},
{
"id": "X-XSS-Protection",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "1; mode=block"
},
{
"id": "Access-Control-Allow-Origin",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "*"
},
{
"id": "Permissions-Policy",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "fullscreen=(), display-capture=(), camera=(), microphone=(), geolocation=()"
},
{
"id": "Referrer-Policy",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "no-referrer, strict-origin-when-cross-origin"
},
{
"id": "Cache-Control",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "public, max-age=0, must-revalidate"
},
{
"id": "banner_reverseproxy",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -5143,7 +5138,7 @@
},
{
"id": "heartbleed",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -5152,7 +5147,7 @@
},
{
"id": "CCS",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -5161,7 +5156,7 @@
},
{
"id": "ticketbleed",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -5170,7 +5165,7 @@
},
{
"id": "ROBOT",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -5179,7 +5174,7 @@
},
{
"id": "secure_renego",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -5187,7 +5182,7 @@
},
{
"id": "secure_client_renego",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -5196,7 +5191,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -5205,7 +5200,7 @@
},
{
"id": "BREACH",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -5214,7 +5209,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -5223,14 +5218,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -5239,7 +5234,7 @@
},
{
"id": "FREAK",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -5248,7 +5243,7 @@
},
{
"id": "DROWN",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -5257,16 +5252,16 @@
},
{
"id": "DROWN_hint",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=FACC342AAD4270AD1901FDEDF02DACCDEF9FA1B9008DA42342AE1C11ADB41ED0"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1B8993057315C49E69244E12B24724FC35A25C7C52F21468FEE6A0CEAE5058A2"
},
{
"id": "LOGJAM",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -5275,7 +5270,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -5284,7 +5279,7 @@
},
{
"id": "BEAST",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -5293,7 +5288,7 @@
},
{
"id": "LUCKY13",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -5302,7 +5297,7 @@
},
{
"id": "winshock",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -5311,7 +5306,7 @@
},
{
"id": "RC4",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -5320,325 +5315,325 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_81",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_90",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-android_X",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-android_11",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-android_12",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-java1102",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-java1703",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-go_1178",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "rating_spec",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "scanTime",
- "ip": "carte-verte.ademe.vercel.app/64.29.17.129",
+ "ip": "carte-verte.ademe.vercel.app/216.198.79.65",
"port": "443",
"severity": "INFO",
- "finding": "84"
+ "finding": "83"
}
],
"thirdparties": {
@@ -5868,7 +5863,7 @@
"zap": {
"@programName": "ZAP",
"@version": "2.16.0",
- "@generated": "Sun, 26 Jan 2025 01:48:52",
+ "@generated": "Sun, 2 Mar 2025 01:49:15",
"site": [
{
"@name": "https://carte-verte.ademe.vercel.app",
@@ -5877,25 +5872,32 @@
"@ssl": "true",
"alerts": [
{
- "name": "Content Security Policy (CSP) Header Not Set",
+ "name": "CSP: script-src unsafe-inline",
"riskcode": "2",
"confidence": "3",
"riskdesc": "Medium (High)",
- "desc": "Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.
"
+ "desc": "Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.
"
},
{
- "name": "Permissions Policy Header Not Set",
- "riskcode": "1",
+ "name": "CSP: style-src unsafe-inline",
+ "riskcode": "2",
+ "confidence": "3",
+ "riskdesc": "Medium (High)",
+ "desc": "Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.
"
+ },
+ {
+ "name": "Cross-Domain Misconfiguration",
+ "riskcode": "2",
"confidence": "2",
- "riskdesc": "Low (Medium)",
- "desc": "Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.
"
+ "riskdesc": "Medium (Medium)",
+ "desc": "Web browser data loading may be possible, due to a Cross Origin Resource Sharing (CORS) misconfiguration on the web server.
"
},
{
- "name": "Strict-Transport-Security Header Not Set",
+ "name": "Insufficient Site Isolation Against Spectre Vulnerability",
"riskcode": "1",
- "confidence": "3",
- "riskdesc": "Low (High)",
- "desc": "HTTP Strict Transport Security (HSTS) is a web security policy mechanism whereby a web server declares that complying user agents (such as a web browser) are to interact with it using only secure HTTPS connections (i.e. HTTP layered over TLS/SSL). HSTS is an IETF standards track protocol and is specified in RFC 6797.
"
+ "confidence": "2",
+ "riskdesc": "Low (Medium)",
+ "desc": "Cross-Origin-Embedder-Policy header is a response header that prevents a document from loading any cross-origin resources that don't explicitly grant the document permission (using CORP or CORS).
"
},
{
"name": "Timestamp Disclosure - Unix",
@@ -5912,18 +5914,25 @@
"desc": "Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).
"
},
{
- "name": "Modern Web Application",
+ "name": "Information Disclosure - Suspicious Comments",
"riskcode": "0",
- "confidence": "2",
- "riskdesc": "Informational (Medium)",
- "desc": "The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.
"
+ "confidence": "1",
+ "riskdesc": "Informational (Low)",
+ "desc": "The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.
"
},
{
- "name": "Non-Storable Content",
+ "name": "Re-examine Cache-control Directives",
+ "riskcode": "0",
+ "confidence": "1",
+ "riskdesc": "Informational (Low)",
+ "desc": "The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.
"
+ },
+ {
+ "name": "Retrieved from Cache",
"riskcode": "0",
"confidence": "2",
"riskdesc": "Informational (Medium)",
- "desc": "The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.
"
+ "desc": "The content was retrieved from a shared cache. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.
"
},
{
"name": "Sec-Fetch-Dest Header is Missing",
@@ -5952,6 +5961,20 @@
"confidence": "3",
"riskdesc": "Informational (High)",
"desc": "Specifies if a navigation request was initiated by a user.
"
+ },
+ {
+ "name": "Storable and Cacheable Content",
+ "riskcode": "0",
+ "confidence": "2",
+ "riskdesc": "Informational (Medium)",
+ "desc": "The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.
"
+ },
+ {
+ "name": "Storable but Non-Cacheable Content",
+ "riskcode": "0",
+ "confidence": "2",
+ "riskdesc": "Informational (Medium)",
+ "desc": "The response contents are storable by caching components such as proxy servers, but will not be retrieved directly from the cache, without validating the request upstream, in response to similar requests from other users.
"
}
]
}
@@ -5991,7 +6014,7 @@
"type": "dns",
"host": "carte-verte.ademe.vercel.app.",
"matched-at": "carte-verte.ademe.vercel.app",
- "timestamp": "2025-01-26T01:39:08.248555018Z",
+ "timestamp": "2025-03-02T01:54:29.3026755Z",
"matcher-status": true
},
{
@@ -6023,12 +6046,50 @@
"max-request": 1
}
},
- "matcher-name": "x-content-type-options",
+ "matcher-name": "strict-transport-security",
"type": "http",
"host": "https://carte-verte.ademe.vercel.app",
"matched-at": "https://carte-verte.ademe.vercel.app",
- "ip": "64.29.17.129",
- "timestamp": "2025-01-26T01:39:46.394020529Z",
+ "ip": "216.198.79.129",
+ "timestamp": "2025-03-02T01:55:05.310431521Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.ademe.vercel.app'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/misconfiguration/http-missing-security-headers.yaml",
+ "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
+ "template-id": "http-missing-security-headers",
+ "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "info": {
+ "name": "HTTP Missing Security Headers",
+ "author": [
+ "socketz",
+ "geeknik",
+ "g4l1t0",
+ "convisoappsec",
+ "kurohost",
+ "dawid-czarnecki",
+ "forgedhallpass",
+ "jub0bs",
+ "userdehghani"
+ ],
+ "tags": [
+ "misconfig",
+ "headers",
+ "generic"
+ ],
+ "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
+ "severity": "info",
+ "metadata": {
+ "max-request": 1
+ }
+ },
+ "matcher-name": "content-security-policy",
+ "type": "http",
+ "host": "https://carte-verte.ademe.vercel.app",
+ "matched-at": "https://carte-verte.ademe.vercel.app",
+ "ip": "216.198.79.129",
+ "timestamp": "2025-03-02T01:55:05.310471095Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.ademe.vercel.app'",
"matcher-status": true
},
@@ -6065,8 +6126,46 @@
"type": "http",
"host": "https://carte-verte.ademe.vercel.app",
"matched-at": "https://carte-verte.ademe.vercel.app",
- "ip": "64.29.17.129",
- "timestamp": "2025-01-26T01:39:46.394082625Z",
+ "ip": "216.198.79.129",
+ "timestamp": "2025-03-02T01:55:05.310482416Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.ademe.vercel.app'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/misconfiguration/http-missing-security-headers.yaml",
+ "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
+ "template-id": "http-missing-security-headers",
+ "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "info": {
+ "name": "HTTP Missing Security Headers",
+ "author": [
+ "socketz",
+ "geeknik",
+ "g4l1t0",
+ "convisoappsec",
+ "kurohost",
+ "dawid-czarnecki",
+ "forgedhallpass",
+ "jub0bs",
+ "userdehghani"
+ ],
+ "tags": [
+ "misconfig",
+ "headers",
+ "generic"
+ ],
+ "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
+ "severity": "info",
+ "metadata": {
+ "max-request": 1
+ }
+ },
+ "matcher-name": "clear-site-data",
+ "type": "http",
+ "host": "https://carte-verte.ademe.vercel.app",
+ "matched-at": "https://carte-verte.ademe.vercel.app",
+ "ip": "216.198.79.129",
+ "timestamp": "2025-03-02T01:55:05.310491573Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.ademe.vercel.app'",
"matcher-status": true
},
@@ -6103,8 +6202,8 @@
"type": "http",
"host": "https://carte-verte.ademe.vercel.app",
"matched-at": "https://carte-verte.ademe.vercel.app",
- "ip": "64.29.17.129",
- "timestamp": "2025-01-26T01:39:46.394109986Z",
+ "ip": "216.198.79.129",
+ "timestamp": "2025-03-02T01:55:05.310506932Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.ademe.vercel.app'",
"matcher-status": true
},
@@ -6141,84 +6240,8 @@
"type": "http",
"host": "https://carte-verte.ademe.vercel.app",
"matched-at": "https://carte-verte.ademe.vercel.app",
- "ip": "64.29.17.129",
- "timestamp": "2025-01-26T01:39:46.394123932Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.ademe.vercel.app'",
- "matcher-status": true
- },
- {
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
- "info": {
- "name": "HTTP Missing Security Headers",
- "author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
- ],
- "tags": [
- "misconfig",
- "headers",
- "generic"
- ],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
- "severity": "info",
- "metadata": {
- "max-request": 1
- }
- },
- "matcher-name": "cross-origin-resource-policy",
- "type": "http",
- "host": "https://carte-verte.ademe.vercel.app",
- "matched-at": "https://carte-verte.ademe.vercel.app",
- "ip": "64.29.17.129",
- "timestamp": "2025-01-26T01:39:46.394145712Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.ademe.vercel.app'",
- "matcher-status": true
- },
- {
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
- "info": {
- "name": "HTTP Missing Security Headers",
- "author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
- ],
- "tags": [
- "misconfig",
- "headers",
- "generic"
- ],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
- "severity": "info",
- "metadata": {
- "max-request": 1
- }
- },
- "matcher-name": "content-security-policy",
- "type": "http",
- "host": "https://carte-verte.ademe.vercel.app",
- "matched-at": "https://carte-verte.ademe.vercel.app",
- "ip": "64.29.17.129",
- "timestamp": "2025-01-26T01:39:46.394162193Z",
+ "ip": "216.198.79.129",
+ "timestamp": "2025-03-02T01:55:05.310525988Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.ademe.vercel.app'",
"matcher-status": true
},
@@ -6255,8 +6278,8 @@
"type": "http",
"host": "https://carte-verte.ademe.vercel.app",
"matched-at": "https://carte-verte.ademe.vercel.app",
- "ip": "64.29.17.129",
- "timestamp": "2025-01-26T01:39:46.394175288Z",
+ "ip": "216.198.79.129",
+ "timestamp": "2025-03-02T01:55:05.310538441Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.ademe.vercel.app'",
"matcher-status": true
},
@@ -6293,8 +6316,8 @@
"type": "http",
"host": "https://carte-verte.ademe.vercel.app",
"matched-at": "https://carte-verte.ademe.vercel.app",
- "ip": "64.29.17.129",
- "timestamp": "2025-01-26T01:39:46.394191017Z",
+ "ip": "216.198.79.129",
+ "timestamp": "2025-03-02T01:55:05.310550945Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.ademe.vercel.app'",
"matcher-status": true
},
@@ -6327,12 +6350,12 @@
"max-request": 1
}
},
- "matcher-name": "strict-transport-security",
+ "matcher-name": "x-content-type-options",
"type": "http",
"host": "https://carte-verte.ademe.vercel.app",
"matched-at": "https://carte-verte.ademe.vercel.app",
- "ip": "64.29.17.129",
- "timestamp": "2025-01-26T01:39:46.394293027Z",
+ "ip": "216.198.79.129",
+ "timestamp": "2025-03-02T01:55:05.310571333Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.ademe.vercel.app'",
"matcher-status": true
},
@@ -6369,8 +6392,8 @@
"type": "http",
"host": "https://carte-verte.ademe.vercel.app",
"matched-at": "https://carte-verte.ademe.vercel.app",
- "ip": "64.29.17.129",
- "timestamp": "2025-01-26T01:39:46.394313225Z",
+ "ip": "216.198.79.129",
+ "timestamp": "2025-03-02T01:55:05.310584968Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.ademe.vercel.app'",
"matcher-status": true
},
@@ -6403,12 +6426,12 @@
"max-request": 1
}
},
- "matcher-name": "clear-site-data",
+ "matcher-name": "cross-origin-resource-policy",
"type": "http",
"host": "https://carte-verte.ademe.vercel.app",
"matched-at": "https://carte-verte.ademe.vercel.app",
- "ip": "64.29.17.129",
- "timestamp": "2025-01-26T01:39:46.3943262Z",
+ "ip": "216.198.79.129",
+ "timestamp": "2025-03-02T01:55:05.310598984Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carte-verte.ademe.vercel.app'",
"matcher-status": true
},
@@ -6438,8 +6461,8 @@
"extracted-results": [
"Let's Encrypt"
],
- "ip": "64.29.17.129",
- "timestamp": "2025-01-26T01:46:21.551035081Z",
+ "ip": "216.198.79.129",
+ "timestamp": "2025-03-02T01:58:16.590120281Z",
"matcher-status": true
},
{
@@ -6468,8 +6491,8 @@
"extracted-results": [
"*.ademe.vercel.app"
],
- "ip": "64.29.17.129",
- "timestamp": "2025-01-26T01:46:21.551226288Z",
+ "ip": "216.198.79.129",
+ "timestamp": "2025-03-02T01:58:16.595032067Z",
"matcher-status": true
},
{
@@ -6503,8 +6526,8 @@
"CN: *.ademe.vercel.app",
" SAN: [*.ademe.vercel.app]"
],
- "ip": "64.29.17.129",
- "timestamp": "2025-01-26T01:46:21.551265652Z",
+ "ip": "216.198.79.129",
+ "timestamp": "2025-03-02T01:58:16.59507096Z",
"matcher-status": true
},
{
@@ -6534,8 +6557,8 @@
"extracted-results": [
"tls12"
],
- "ip": "64.29.17.129",
- "timestamp": "2025-01-26T01:46:21.650630386Z",
+ "ip": "216.198.79.129",
+ "timestamp": "2025-03-02T01:58:16.696741351Z",
"matcher-status": true
},
{
@@ -6565,8 +6588,8 @@
"extracted-results": [
"tls13"
],
- "ip": "64.29.17.129",
- "timestamp": "2025-01-26T01:46:21.694111343Z",
+ "ip": "216.198.79.129",
+ "timestamp": "2025-03-02T01:58:16.737630758Z",
"matcher-status": true
}
],
@@ -6574,7 +6597,7 @@
{
"requestedUrl": "https://carte-verte.ademe.vercel.app/",
"finalUrl": "https://carte-verte.ademe.vercel.app/",
- "fetchTime": "2025-01-26T01:53:31.259Z",
+ "fetchTime": "2025-03-02T01:49:33.124Z",
"runWarnings": [],
"categories": {
"performance": {
@@ -6585,7 +6608,7 @@
"snapshot"
],
"id": "performance",
- "score": 0.76
+ "score": 0.75
},
"accessibility": {
"title": "Accessibility",
@@ -6637,53 +6660,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 1207,
+ "numericValue": 1209,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 1207,
- "firstMeaningfulPaint": 1207,
- "largestContentfulPaint": 7507,
- "interactive": 1207,
- "speedIndex": 1207,
+ "firstContentfulPaint": 1209,
+ "firstMeaningfulPaint": 1209,
+ "largestContentfulPaint": 11034,
+ "interactive": 1209,
+ "speedIndex": 1209,
"totalBlockingTime": 0,
"maxPotentialFID": 16,
"cumulativeLayoutShift": 0.0000895139906141493,
"cumulativeLayoutShiftMainFrame": 0.0000895139906141493,
"totalCumulativeLayoutShift": 0.0000895139906141493,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 973299192,
+ "observedTimeOriginTs": 436361537,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 973299192,
- "observedFirstPaint": 251,
- "observedFirstPaintTs": 973549827,
- "observedFirstContentfulPaint": 251,
- "observedFirstContentfulPaintTs": 973549827,
- "observedFirstContentfulPaintAllFrames": 251,
- "observedFirstContentfulPaintAllFramesTs": 973549827,
- "observedFirstMeaningfulPaint": 251,
- "observedFirstMeaningfulPaintTs": 973549827,
- "observedLargestContentfulPaint": 266,
- "observedLargestContentfulPaintTs": 973565139,
- "observedLargestContentfulPaintAllFrames": 266,
- "observedLargestContentfulPaintAllFramesTs": 973565139,
- "observedTraceEnd": 2715,
- "observedTraceEndTs": 976014474,
- "observedLoad": 361,
- "observedLoadTs": 973660389,
- "observedDomContentLoaded": 251,
- "observedDomContentLoadedTs": 973549751,
+ "observedNavigationStartTs": 436361537,
+ "observedFirstPaint": 376,
+ "observedFirstPaintTs": 436737821,
+ "observedFirstContentfulPaint": 376,
+ "observedFirstContentfulPaintTs": 436737821,
+ "observedFirstContentfulPaintAllFrames": 376,
+ "observedFirstContentfulPaintAllFramesTs": 436737821,
+ "observedFirstMeaningfulPaint": 376,
+ "observedFirstMeaningfulPaintTs": 436737821,
+ "observedLargestContentfulPaint": 444,
+ "observedLargestContentfulPaintTs": 436805280,
+ "observedLargestContentfulPaintAllFrames": 444,
+ "observedLargestContentfulPaintAllFramesTs": 436805280,
+ "observedTraceEnd": 2830,
+ "observedTraceEndTs": 439191760,
+ "observedLoad": 463,
+ "observedLoadTs": 436824967,
+ "observedDomContentLoaded": 311,
+ "observedDomContentLoadedTs": 436672479,
"observedCumulativeLayoutShift": 0.0000895139906141493,
"observedCumulativeLayoutShiftMainFrame": 0.0000895139906141493,
"observedTotalCumulativeLayoutShift": 0.0000895139906141493,
- "observedFirstVisualChange": 261,
- "observedFirstVisualChangeTs": 973560192,
- "observedLastVisualChange": 578,
- "observedLastVisualChangeTs": 973877192,
- "observedSpeedIndex": 267,
- "observedSpeedIndexTs": 973565889
+ "observedFirstVisualChange": 387,
+ "observedFirstVisualChangeTs": 436748537,
+ "observedLastVisualChange": 704,
+ "observedLastVisualChangeTs": 437065537,
+ "observedSpeedIndex": 397,
+ "observedSpeedIndexTs": 436759029
},
{
"lcpInvalidated": false
@@ -6705,19 +6728,19 @@
"numScripts": 14,
"numStylesheets": 3,
"numFonts": 9,
- "numTasks": 33,
- "numTasksOver10ms": 0,
- "numTasksOver25ms": 0,
+ "numTasks": 35,
+ "numTasksOver10ms": 1,
+ "numTasksOver25ms": 1,
"numTasksOver50ms": 0,
"numTasksOver100ms": 0,
"numTasksOver500ms": 0,
- "rtt": 6.222999999999999,
- "throughput": 286762095.5248646,
- "maxRtt": 6.222999999999999,
- "maxServerLatency": 7.234000000000002,
- "totalByteWeight": 3471757,
- "totalTaskTime": 5.454999999999999,
- "mainDocumentTransferSize": 14822
+ "rtt": 5.749999999999999,
+ "throughput": 342717374.13610226,
+ "maxRtt": 5.749999999999999,
+ "maxServerLatency": 8.64,
+ "totalByteWeight": 3471727,
+ "totalTaskTime": 27.731,
+ "mainDocumentTransferSize": 14823
}
]
}
@@ -6783,15 +6806,20 @@
"date": "2023-04-12",
"comment": "Comité de fin d'investigation"
},
+ {
+ "name": "committee",
+ "date": "2023-10-13",
+ "comment": "Validation du format de l'expérimentation"
+ },
{
"name": "committee",
"date": "2024-07-01",
- "comment": ""
+ "comment": "Validation des prestations et stratégique d'acquisition"
},
{
"name": "committee",
- "date": "2024-10-13",
- "comment": ""
+ "date": "2025-01-21",
+ "comment": "Communication des premiers résultats + exploration des modèles de financement"
}
],
"phases": [
@@ -6831,7 +6859,7 @@
"width": 1920,
"height": 1080,
"url": "https://carte-verte.ademe.vercel.app",
- "size": 3673.527,
+ "size": 3673.626,
"nodes": 380,
"requests": 51,
"grade": "C",
@@ -6839,7 +6867,7 @@
"ges": 1.8,
"water": 2.7,
"ecoindex_version": "5.4.2",
- "date": "2025-01-26 01:50:04.988858",
+ "date": "2025-03-02 01:47:12.101305",
"page_type": "website"
}
],
@@ -6854,20 +6882,23 @@
"apdexGrade": "A",
"uptime": 100,
"uptimeGrade": "A",
+ "nmapGrade": "A",
+ "nmapOpenPortsCount": 2,
+ "nmapOpenPortsGrade": "A",
"dependabotGrade": "A",
"dependabotCount": 0,
"codescanCount": 0,
"codescanGrade": "A",
- "testsslExpireSoon": true,
- "testsslExpireDate": "2025-03-05T06:42:00.000Z",
+ "testsslExpireSoon": false,
+ "testsslExpireDate": "2025-05-14T04:35:00.000Z",
"testsslGrade": "A+",
"cookiesGrade": null,
"cookiesCount": null,
"trackersGrade": null,
"trackersCount": null,
- "zapCount": 4,
+ "zapCount": 5,
"zapGrade": "D",
- "lighthouse_performance": 0.76,
+ "lighthouse_performance": 0.75,
"lighthouse_performanceGrade": "B",
"lighthouse_accessibility": 0.92,
"lighthouse_accessibilityGrade": "A",
@@ -6900,255 +6931,218 @@
"incubateur-ademe/impactco2"
],
"http": {
- "url": "https://impactco2.fr",
- "algorithm_version": 3,
- "end_time": "Sun, 20 Oct 2024 02:03:55 GMT",
- "grade": "B+",
- "hidden": false,
- "likelihood_indicator": "MEDIUM",
- "response_headers": {
- "Cache-Control": "s-maxage=900, stale-while-revalidate",
- "Connection": "keep-alive",
- "Content-Encoding": "gzip",
- "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv",
- "Content-Type": "text/html; charset=utf-8",
- "Date": "Sun, 20 Oct 2024 02:03:53 GMT",
- "ETag": "\"ir1t6q8ib0ao03\"",
- "Transfer-Encoding": "chunked",
- "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding",
- "X-Content-Type-Options": "nosniff",
- "X-Powered-By": "Next.js",
- "X-Request-ID": "06b62f7d-b6cc-4b7e-9c09-5490badefaa9",
- "X-XSS-Protection": "1; mode=block",
- "strict-transport-security": "max-age=31536000",
- "x-nextjs-cache": "HIT"
- },
- "scan_id": 57047489,
- "score": 80,
- "start_time": "Sun, 20 Oct 2024 02:03:51 GMT",
- "state": "FINISHED",
- "status_code": 200,
- "tests_failed": 1,
- "tests_passed": 9,
- "tests_quantity": 10,
- "details": {
+ "scan": {
+ "algorithmVersion": 4,
+ "grade": "B+",
+ "error": null,
+ "score": 80,
+ "statusCode": 200,
+ "testsFailed": 1,
+ "testsPassed": 9,
+ "testsQuantity": 10,
+ "responseHeaders": {
+ "date": "Sun, 02 Mar 2025 01:53:21 GMT",
+ "content-type": "text/html; charset=utf-8",
+ "transfer-encoding": "chunked",
+ "connection": "close",
+ "x-request-id": "7a4962e1-6aa1-4b67-8001-ccb876e027b6",
+ "x-content-type-options": "nosniff",
+ "x-xss-protection": "1; mode=block",
+ "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv",
+ "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding",
+ "x-nextjs-cache": "HIT",
+ "x-nextjs-prerender": "1",
+ "x-nextjs-stale-time": "4294967294",
+ "x-powered-by": "Next.js",
+ "cache-control": "s-maxage=900, stale-while-revalidate=31535100",
+ "etag": "\"7sm854nvm7byyv\"",
+ "strict-transport-security": "max-age=31536000"
+ }
+ },
+ "tests": {
"content-security-policy": {
"expectation": "csp-implemented-with-no-unsafe",
- "name": "content-security-policy",
- "output": {
- "data": {
- "base-uri": [
- "'self'"
- ],
- "connect-src": [
- "https://stats.beta.gouv.fr",
- "https://cdn.jsdelivr.net",
- "https://sentry.incubateur.net",
- "https://photon.komoot.io",
- "'self'"
- ],
- "default-src": [
- "'self'"
- ],
- "font-src": [
- "https:",
- "data:",
- "'self'"
- ],
- "form-action": [
- "'self'"
- ],
- "frame-ancestors": [
- "https:",
- "file:",
- "'self'"
- ],
- "frame-src": [
- "https://cloud.contact.ademe.fr/impact-CO2-miniform",
- "https://cloud.contact.ademe.fr/impact-CO2-rdv",
- "'self'"
- ],
- "img-src": [
- "https:",
- "data:",
- "'self'"
- ],
- "object-src": [
- "'none'"
- ],
- "script-src": [
- "'unsafe-inline'",
- "https://stats.beta.gouv.fr/matomo.js",
- "https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php",
- "'self'"
- ],
- "script-src-attr": [
- "'none'"
- ],
- "style-src": [
- "https:",
- "'unsafe-inline'",
- "'self'"
- ],
- "upgrade-insecure-requests": [
- "'none'"
- ]
- },
- "http": true,
- "meta": false,
- "numPolicies": 1,
- "policy": {
- "antiClickjacking": false,
- "defaultNone": false,
- "insecureBaseUri": false,
- "insecureFormAction": false,
- "insecureSchemeActive": false,
- "insecureSchemePassive": false,
- "strictDynamic": false,
- "unsafeEval": false,
- "unsafeInline": true,
- "unsafeInlineStyle": true,
- "unsafeObjects": false
- }
- },
"pass": false,
"result": "csp-implemented-with-unsafe-inline",
- "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.",
- "score_modifier": -20
+ "scoreModifier": -20,
+ "data": {
+ "default-src": [
+ "'self'"
+ ],
+ "base-uri": [
+ "'self'"
+ ],
+ "font-src": [
+ "'self'",
+ "data:",
+ "https:"
+ ],
+ "form-action": [
+ "'self'"
+ ],
+ "frame-ancestors": [
+ "'self'",
+ "file:",
+ "https:"
+ ],
+ "img-src": [
+ "'self'",
+ "data:",
+ "https:"
+ ],
+ "object-src": [
+ "'none'"
+ ],
+ "script-src": [
+ "'self'",
+ "'unsafe-inline'",
+ "https://stats.beta.gouv.fr/matomo.js",
+ "https://stats.beta.gouv.fr/plugins/heatmasessionrecording/configs.php"
+ ],
+ "script-src-attr": [
+ "'none'"
+ ],
+ "style-src": [
+ "'self'",
+ "'unsafe-inline'",
+ "https:"
+ ],
+ "upgrade-insecure-requests": [
+ "'none'"
+ ],
+ "connect-src": [
+ "'self'",
+ "https://cdn.jsdelivr.net",
+ "https://photon.komoot.io",
+ "https://sentry.incubateur.net",
+ "https://stats.beta.gouv.fr"
+ ],
+ "frame-src": [
+ "'self'",
+ "https://cloud.contact.ademe.fr/impact-co2-miniform",
+ "https://cloud.contact.ademe.fr/impact-co2-rdv"
+ ]
+ },
+ "http": true,
+ "meta": false,
+ "policy": {
+ "antiClickjacking": false,
+ "defaultNone": false,
+ "insecureBaseUri": false,
+ "insecureFormAction": false,
+ "insecureSchemeActive": false,
+ "insecureSchemePassive": false,
+ "strictDynamic": false,
+ "unsafeEval": false,
+ "unsafeInline": true,
+ "unsafeInlineStyle": true,
+ "unsafeObjects": false
+ },
+ "numPolicies": 1
},
"cookies": {
"expectation": "cookies-secure-with-httponly-sessions",
- "name": "cookies",
- "output": {
- "data": null,
- "sameSite": null
- },
"pass": true,
"result": "cookies-not-found",
- "score_description": "No cookies detected",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "sameSite": false
},
"cross-origin-resource-sharing": {
"expectation": "cross-origin-resource-sharing-not-implemented",
- "name": "cross-origin-resource-sharing",
- "output": {
- "data": {
- "acao": null,
- "clientaccesspolicy": null,
- "crossdomain": null
- }
- },
"pass": true,
"result": "cross-origin-resource-sharing-not-implemented",
- "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null
},
"redirection": {
"expectation": "redirection-to-https",
- "name": "redirection",
- "output": {
- "destination": "https://impactco2.fr/",
- "redirects": true,
- "route": [
- "http://impactco2.fr/",
- "https://impactco2.fr/"
- ],
- "status_code": 200
- },
"pass": true,
"result": "redirection-to-https",
- "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "destination": "https://impactco2.fr/",
+ "redirects": true,
+ "route": [
+ "http://impactco2.fr/",
+ "https://impactco2.fr/"
+ ],
+ "statusCode": 200
},
"referrer-policy": {
"expectation": "referrer-policy-private",
- "name": "referrer-policy",
- "output": {
- "data": null,
- "http": false,
- "meta": false
- },
"pass": true,
"result": "referrer-policy-not-implemented",
- "score_description": "Referrer-Policy header not implemented",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
},
"strict-transport-security": {
"expectation": "hsts-implemented-max-age-at-least-six-months",
- "name": "strict-transport-security",
- "output": {
- "data": "max-age=31536000",
- "includeSubDomains": false,
- "max-age": 31536000,
- "preload": false,
- "preloaded": false
- },
"pass": true,
"result": "hsts-implemented-max-age-at-least-six-months",
- "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "max-age=31536000",
+ "includeSubDomains": false,
+ "maxAge": 31536000,
+ "preload": false,
+ "preloaded": false
},
"subresource-integrity": {
"expectation": "sri-implemented-and-external-scripts-loaded-securely",
- "name": "subresource-integrity",
- "output": {
- "data": {}
- },
"pass": true,
"result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin",
- "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": {}
},
"x-content-type-options": {
"expectation": "x-content-type-options-nosniff",
- "name": "x-content-type-options",
- "output": {
- "data": "nosniff"
- },
"pass": true,
"result": "x-content-type-options-nosniff",
- "score_description": "X-Content-Type-Options header set to \"nosniff\"",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "nosniff"
},
"x-frame-options": {
"expectation": "x-frame-options-sameorigin-or-deny",
- "name": "x-frame-options",
- "output": {
- "data": null
- },
"pass": true,
"result": "x-frame-options-implemented-via-csp",
- "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive",
- "score_modifier": 5
- },
- "x-xss-protection": {
- "expectation": "x-xss-protection-disabled",
- "name": "x-xss-protection",
- "output": {
- "data": "1; mode=block"
- },
+ "scoreModifier": 5,
+ "data": null
+ },
+ "cross-origin-resource-policy": {
+ "expectation": "corp-implemented-with-same-site",
"pass": true,
- "result": "x-xss-protection-enabled-mode-block",
- "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"",
- "score_modifier": 0
+ "result": "corp-not-implemented",
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
}
}
},
"updownio": {
"token": "g60d",
"url": "https://impactco2.fr",
+ "type": "https",
"alias": "ImpactCO2",
- "last_status": 200,
"uptime": 100,
"down": false,
"down_since": null,
- "up_since": "2025-01-23T09:06:12Z",
+ "up_since": "2025-02-25T08:15:42Z",
"error": null,
"period": 300,
- "apdex_t": 0.5,
"string_match": "",
"enabled": true,
"published": true,
+ "recipients": [
+ "email:3429082144"
+ ],
+ "last_check_at": "2025-03-02T02:05:59Z",
+ "next_check_at": "2025-03-02T02:10:57Z",
+ "created_at": "2023-11-26T19:58:06Z",
+ "mute_until": null,
+ "last_status": 200,
+ "apdex_t": 0.5,
"disabled_locations": [
"lan",
"mia",
@@ -7157,20 +7151,13 @@
"tok",
"syd"
],
- "recipients": [
- "email:3429082144"
- ],
- "last_check_at": "2025-01-26T02:07:04Z",
- "next_check_at": "2025-01-26T02:12:04Z",
- "created_at": "2023-11-26T19:58:06Z",
- "mute_until": null,
- "favicon_url": "https://impactco2.fr/favicon.ico",
"custom_headers": {},
+ "favicon_url": "https://impactco2.fr/favicon.ico",
"http_verb": "GET/HEAD",
"http_body": "",
"ssl": {
- "tested_at": "2025-01-26T01:22:14Z",
- "expires_at": "2025-02-26T13:56:36Z",
+ "tested_at": "2025-03-02T01:21:14Z",
+ "expires_at": "2025-04-27T13:57:39Z",
"valid": true,
"error": null
},
@@ -7178,17 +7165,38 @@
"apdex": 1,
"timings": {
"redirect": 0,
- "namelookup": 40,
- "connection": 26,
- "handshake": 32,
- "response": 36,
- "total": 134
+ "namelookup": 60,
+ "connection": 27,
+ "handshake": 33,
+ "response": 38,
+ "total": 158
}
},
"uptimeGrade": "A",
"apdexGrade": "A"
},
- "nmap": null,
+ "nmap": {
+ "host": "impactco2.fr",
+ "protocol": "tcp",
+ "closed_ports": "998",
+ "open_ports": [
+ {
+ "service": {
+ "name": "http",
+ "id": "80",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "https",
+ "id": "443",
+ "vulnerabilities": []
+ }
+ }
+ ],
+ "grade": "A"
+ },
"dependabot": {
"totalCount": 0,
"grade": "A",
@@ -7207,77 +7215,77 @@
"testssl": [
{
"id": "service",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -7285,7 +7293,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -7293,7 +7301,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -7301,7 +7309,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -7309,7 +7317,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -7317,7 +7325,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -7325,483 +7333,483 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "56 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "2024-11-28 13:56"
+ "finding": "2025-01-27 13:57"
},
{
"id": "cert_notAfter",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
- "finding": "2025-02-26 13:56"
+ "finding": "2025-04-27 13:57"
},
{
"id": "cert_extlifeSpan",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "http://r11.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "R11 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "R11 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "1737857294"
+ "finding": "1740880482"
},
{
"id": "HSTS_time",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "X-Powered-By: Next.js"
},
{
"id": "cookie_count",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Content-Type-Options",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv"
},
{
"id": "X-XSS-Protection",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "1; mode=block"
},
{
"id": "Cache-Control",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "s-maxage=900, stale-while-revalidate=31535100"
},
{
"id": "banner_reverseproxy",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -7809,7 +7817,7 @@
},
{
"id": "heartbleed",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -7818,7 +7826,7 @@
},
{
"id": "CCS",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -7827,7 +7835,7 @@
},
{
"id": "ticketbleed",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -7836,7 +7844,7 @@
},
{
"id": "ROBOT",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -7845,7 +7853,7 @@
},
{
"id": "secure_renego",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -7853,7 +7861,7 @@
},
{
"id": "secure_client_renego",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -7862,7 +7870,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -7871,7 +7879,7 @@
},
{
"id": "BREACH",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -7880,7 +7888,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -7889,14 +7897,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -7905,7 +7913,7 @@
},
{
"id": "FREAK",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -7914,7 +7922,7 @@
},
{
"id": "DROWN",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -7923,16 +7931,16 @@
},
{
"id": "DROWN_hint",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BE3299D764BDA7CA01A66DEF58712BE13600EA8ABE5F4D2BC109263C44F3DF52"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E4E026E4CA3280D71CA1E2D3F376CBE4F67A4E5BEA833D556EBA146BBD368388"
},
{
"id": "LOGJAM",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -7941,7 +7949,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -7950,7 +7958,7 @@
},
{
"id": "BEAST",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -7959,7 +7967,7 @@
},
{
"id": "LUCKY13",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -7968,7 +7976,7 @@
},
{
"id": "winshock",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -7977,7 +7985,7 @@
},
{
"id": "RC4",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -7986,392 +7994,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "impactco2.fr/109.232.233.130",
+ "ip": "impactco2.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -8379,7 +8387,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -8387,7 +8395,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -8395,7 +8403,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -8403,7 +8411,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -8411,7 +8419,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -8419,483 +8427,483 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "56 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "2024-11-28 13:56"
+ "finding": "2025-01-27 13:57"
},
{
"id": "cert_notAfter",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
- "finding": "2025-02-26 13:56"
+ "finding": "2025-04-27 13:57"
},
{
"id": "cert_extlifeSpan",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "http://r11.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "R11 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "R11 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "1737857352"
+ "finding": "1740880535"
},
{
"id": "HSTS_time",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "X-Powered-By: Next.js"
},
{
"id": "cookie_count",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Content-Type-Options",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv"
},
{
"id": "X-XSS-Protection",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "1; mode=block"
},
{
"id": "Cache-Control",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "s-maxage=900, stale-while-revalidate=31535100"
},
{
"id": "banner_reverseproxy",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -8903,7 +8911,7 @@
},
{
"id": "heartbleed",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -8912,7 +8920,7 @@
},
{
"id": "CCS",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -8921,7 +8929,7 @@
},
{
"id": "ticketbleed",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -8930,7 +8938,7 @@
},
{
"id": "ROBOT",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -8939,7 +8947,7 @@
},
{
"id": "secure_renego",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -8947,7 +8955,7 @@
},
{
"id": "secure_client_renego",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -8956,7 +8964,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -8965,7 +8973,7 @@
},
{
"id": "BREACH",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -8974,7 +8982,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -8983,14 +8991,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -8999,7 +9007,7 @@
},
{
"id": "FREAK",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -9008,7 +9016,7 @@
},
{
"id": "DROWN",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -9017,16 +9025,16 @@
},
{
"id": "DROWN_hint",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BE3299D764BDA7CA01A66DEF58712BE13600EA8ABE5F4D2BC109263C44F3DF52"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E4E026E4CA3280D71CA1E2D3F376CBE4F67A4E5BEA833D556EBA146BBD368388"
},
{
"id": "LOGJAM",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -9035,7 +9043,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -9044,7 +9052,7 @@
},
{
"id": "BEAST",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -9053,7 +9061,7 @@
},
{
"id": "LUCKY13",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -9062,7 +9070,7 @@
},
{
"id": "winshock",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -9071,7 +9079,7 @@
},
{
"id": "RC4",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -9080,392 +9088,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "impactco2.fr/5.104.101.30",
+ "ip": "impactco2.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -9473,7 +9481,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -9481,7 +9489,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -9489,7 +9497,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -9497,7 +9505,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -9505,7 +9513,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -9513,483 +9521,483 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "56 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "2024-11-28 13:56"
+ "finding": "2025-01-27 13:57"
},
{
"id": "cert_notAfter",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
- "finding": "2025-02-26 13:56"
+ "finding": "2025-04-27 13:57"
},
{
"id": "cert_extlifeSpan",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http://r11.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "R11 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "R11 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "1737857407"
+ "finding": "1740880588"
},
{
"id": "HSTS_time",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "X-Powered-By: Next.js"
},
{
"id": "cookie_count",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Content-Type-Options",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv"
},
{
"id": "X-XSS-Protection",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "1; mode=block"
},
{
"id": "Cache-Control",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "s-maxage=900, stale-while-revalidate=31535100"
},
{
"id": "banner_reverseproxy",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -9997,7 +10005,7 @@
},
{
"id": "heartbleed",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -10006,7 +10014,7 @@
},
{
"id": "CCS",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -10015,7 +10023,7 @@
},
{
"id": "ticketbleed",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -10024,7 +10032,7 @@
},
{
"id": "ROBOT",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -10033,7 +10041,7 @@
},
{
"id": "secure_renego",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -10041,7 +10049,7 @@
},
{
"id": "secure_client_renego",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -10050,7 +10058,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -10059,7 +10067,7 @@
},
{
"id": "BREACH",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -10068,7 +10076,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -10077,14 +10085,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -10093,7 +10101,7 @@
},
{
"id": "FREAK",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -10102,7 +10110,7 @@
},
{
"id": "DROWN",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -10111,16 +10119,16 @@
},
{
"id": "DROWN_hint",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BE3299D764BDA7CA01A66DEF58712BE13600EA8ABE5F4D2BC109263C44F3DF52"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E4E026E4CA3280D71CA1E2D3F376CBE4F67A4E5BEA833D556EBA146BBD368388"
},
{
"id": "LOGJAM",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -10129,7 +10137,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -10138,7 +10146,7 @@
},
{
"id": "BEAST",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -10147,7 +10155,7 @@
},
{
"id": "LUCKY13",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -10156,7 +10164,7 @@
},
{
"id": "winshock",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -10165,7 +10173,7 @@
},
{
"id": "RC4",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -10174,392 +10182,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "impactco2.fr/109.232.236.90",
+ "ip": "impactco2.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -10567,7 +10575,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -10575,7 +10583,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -10583,7 +10591,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -10591,7 +10599,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -10599,7 +10607,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -10607,483 +10615,483 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "56 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "2024-11-28 13:56"
+ "finding": "2025-01-27 13:57"
},
{
"id": "cert_notAfter",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
- "finding": "2025-02-26 13:56"
+ "finding": "2025-04-27 13:57"
},
{
"id": "cert_extlifeSpan",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "http://r11.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "R11 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "R11 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "-1 seconds from localtime"
+ "finding": "0 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "1737857462"
+ "finding": "1740880642"
},
{
"id": "HSTS_time",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "X-Powered-By: Next.js"
},
{
"id": "cookie_count",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Content-Type-Options",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv"
},
{
"id": "X-XSS-Protection",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "1; mode=block"
},
{
"id": "Cache-Control",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "s-maxage=900, stale-while-revalidate=31535100"
},
{
"id": "banner_reverseproxy",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -11091,7 +11099,7 @@
},
{
"id": "heartbleed",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -11100,7 +11108,7 @@
},
{
"id": "CCS",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -11109,7 +11117,7 @@
},
{
"id": "ticketbleed",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -11118,7 +11126,7 @@
},
{
"id": "ROBOT",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -11127,7 +11135,7 @@
},
{
"id": "secure_renego",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -11135,7 +11143,7 @@
},
{
"id": "secure_client_renego",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -11144,7 +11152,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -11153,7 +11161,7 @@
},
{
"id": "BREACH",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -11162,7 +11170,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -11171,14 +11179,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -11187,7 +11195,7 @@
},
{
"id": "FREAK",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -11196,7 +11204,7 @@
},
{
"id": "DROWN",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -11205,16 +11213,16 @@
},
{
"id": "DROWN_hint",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BE3299D764BDA7CA01A66DEF58712BE13600EA8ABE5F4D2BC109263C44F3DF52"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E4E026E4CA3280D71CA1E2D3F376CBE4F67A4E5BEA833D556EBA146BBD368388"
},
{
"id": "LOGJAM",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -11223,7 +11231,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -11232,7 +11240,7 @@
},
{
"id": "BEAST",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -11241,7 +11249,7 @@
},
{
"id": "LUCKY13",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -11250,7 +11258,7 @@
},
{
"id": "winshock",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -11259,7 +11267,7 @@
},
{
"id": "RC4",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -11268,325 +11276,325 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "scanTime",
- "ip": "impactco2.fr/148.253.75.120",
+ "ip": "impactco2.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "231"
+ "finding": "218"
}
],
"thirdparties": {
@@ -11816,7 +11824,7 @@
"zap": {
"@programName": "ZAP",
"@version": "2.16.0",
- "@generated": "Sun, 26 Jan 2025 01:53:47",
+ "@generated": "Sun, 2 Mar 2025 01:52:33",
"site": [
{
"@name": "https://impactco2.fr",
@@ -11824,13 +11832,6 @@
"@port": "443",
"@ssl": "true",
"alerts": [
- {
- "name": "PII Disclosure",
- "riskcode": "3",
- "confidence": "3",
- "riskdesc": "High (High)",
- "desc": "The response contains Personally Identifiable Information, such as CC number, SSN and similar sensitive data.
"
- },
{
"name": "CSP: Wildcard Directive",
"riskcode": "2",
@@ -11880,13 +11881,6 @@
"riskdesc": "Low (Medium)",
"desc": "Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.
"
},
- {
- "name": "Private IP Disclosure",
- "riskcode": "1",
- "confidence": "2",
- "riskdesc": "Low (Medium)",
- "desc": "A private IP (such as 10.x.x.x, 172.x.x.x, 192.168.x.x) or an Amazon EC2 private hostname (for example, ip-10-0-56-78) has been found in the HTTP response body. This information might be helpful for further attacks targeting internal systems.
"
- },
{
"name": "Server Leaks Information via \"X-Powered-By\" HTTP Response Header Field(s)",
"riskcode": "1",
@@ -11929,13 +11923,6 @@
"riskdesc": "Informational (Medium)",
"desc": "The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.
"
},
- {
- "name": "Non-Storable Content",
- "riskcode": "0",
- "confidence": "2",
- "riskdesc": "Informational (Medium)",
- "desc": "The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.
"
- },
{
"name": "Re-examine Cache-control Directives",
"riskcode": "0",
@@ -12030,7 +12017,7 @@
"type": "dns",
"host": "impactco2.fr.",
"matched-at": "impactco2.fr",
- "timestamp": "2025-01-26T01:39:12.408001756Z",
+ "timestamp": "2025-03-02T01:58:47.810559301Z",
"matcher-status": true
},
{
@@ -12068,7 +12055,7 @@
"extracted-results": [
"\"google-site-verification=_JTbdWm21IJVs9RRaH1M4Qm7bviHvuiJfvz5Eb8y2YU\""
],
- "timestamp": "2025-01-26T01:39:12.549973283Z",
+ "timestamp": "2025-03-02T01:58:47.825487653Z",
"matcher-status": true
},
{
@@ -12101,13 +12088,13 @@
"host": "impactco2.fr.",
"matched-at": "impactco2.fr",
"extracted-results": [
- "nsa.perf1.fr.",
- "nsb.perf1.com.",
"b.ns.developpement-durable.gouv.fr.",
"a.ns.developpement-durable.gouv.fr.",
+ "nsb.perf1.com.",
+ "nsa.perf1.fr.",
"nsc.perf1.com."
],
- "timestamp": "2025-01-26T01:39:13.406192762Z",
+ "timestamp": "2025-03-02T01:58:48.889956152Z",
"matcher-status": true
},
{
@@ -12134,11 +12121,11 @@
"host": "https://impactco2.fr",
"matched-at": "https://impactco2.fr",
"extracted-results": [
- "HEAD",
- "GET"
+ "GET",
+ "HEAD"
],
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:39:24.187816115Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T01:59:00.552583769Z",
"curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'",
"matcher-status": true
},
@@ -12175,10 +12162,11 @@
"host": "https://impactco2.fr",
"matched-at": "https://impactco2.fr",
"extracted-results": [
- "AKIAT73L2G45FSPPWI6X"
+ "ASIAZI2LB466YNXY2SVZ",
+ "ASIAZI2LB466WFYKTSXF"
],
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:39:33.967691236Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T01:59:13.483930384Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'",
"matcher-status": true
},
@@ -12218,8 +12206,8 @@
"extracted-results": [
"1; mode=block"
],
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:39:37.467795937Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T01:59:17.313778434Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'",
"matcher-status": true
},
@@ -12246,8 +12234,8 @@
"type": "http",
"host": "https://impactco2.fr",
"matched-at": "https://impactco2.fr",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:41:00.199052898Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:00:49.740588874Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'",
"matcher-status": true
},
@@ -12280,12 +12268,12 @@
"max-request": 1
}
},
- "matcher-name": "cross-origin-resource-policy",
+ "matcher-name": "permissions-policy",
"type": "http",
"host": "https://impactco2.fr",
"matched-at": "https://impactco2.fr",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:41:03.195706103Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:01:03.567967538Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'",
"matcher-status": true
},
@@ -12318,12 +12306,12 @@
"max-request": 1
}
},
- "matcher-name": "permissions-policy",
+ "matcher-name": "x-frame-options",
"type": "http",
"host": "https://impactco2.fr",
"matched-at": "https://impactco2.fr",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:41:03.195753722Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:01:03.568022911Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'",
"matcher-status": true
},
@@ -12356,12 +12344,12 @@
"max-request": 1
}
},
- "matcher-name": "x-frame-options",
+ "matcher-name": "x-permitted-cross-domain-policies",
"type": "http",
"host": "https://impactco2.fr",
"matched-at": "https://impactco2.fr",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:41:03.195771114Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:01:03.568043289Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'",
"matcher-status": true
},
@@ -12394,12 +12382,12 @@
"max-request": 1
}
},
- "matcher-name": "x-permitted-cross-domain-policies",
+ "matcher-name": "referrer-policy",
"type": "http",
"host": "https://impactco2.fr",
"matched-at": "https://impactco2.fr",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:41:03.195785701Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:01:03.568058417Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'",
"matcher-status": true
},
@@ -12432,12 +12420,12 @@
"max-request": 1
}
},
- "matcher-name": "referrer-policy",
+ "matcher-name": "clear-site-data",
"type": "http",
"host": "https://impactco2.fr",
"matched-at": "https://impactco2.fr",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:41:03.195798635Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:01:03.568072383Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'",
"matcher-status": true
},
@@ -12470,12 +12458,12 @@
"max-request": 1
}
},
- "matcher-name": "clear-site-data",
+ "matcher-name": "cross-origin-embedder-policy",
"type": "http",
"host": "https://impactco2.fr",
"matched-at": "https://impactco2.fr",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:41:03.195818492Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:01:03.568085648Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'",
"matcher-status": true
},
@@ -12508,12 +12496,12 @@
"max-request": 1
}
},
- "matcher-name": "cross-origin-embedder-policy",
+ "matcher-name": "cross-origin-opener-policy",
"type": "http",
"host": "https://impactco2.fr",
"matched-at": "https://impactco2.fr",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:41:03.195831717Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:01:03.568097861Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'",
"matcher-status": true
},
@@ -12546,12 +12534,12 @@
"max-request": 1
}
},
- "matcher-name": "cross-origin-opener-policy",
+ "matcher-name": "cross-origin-resource-policy",
"type": "http",
"host": "https://impactco2.fr",
"matched-at": "https://impactco2.fr",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:41:03.19584388Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:01:03.568111957Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'",
"matcher-status": true
},
@@ -12579,8 +12567,8 @@
"type": "http",
"host": "https://impactco2.fr",
"matched-at": "https://impactco2.fr/robots.txt",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:41:30.312268063Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:01:40.499666594Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr/robots.txt'",
"matcher-status": true
},
@@ -12611,8 +12599,8 @@
"type": "http",
"host": "https://impactco2.fr",
"matched-at": "https://impactco2.fr/sitemap.xml",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:41:30.466311725Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:01:40.565157184Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr/sitemap.xml'",
"matcher-status": true
},
@@ -12651,15 +12639,297 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "status",
+ "extractor-name": "registrantCountry",
"type": "http",
"host": "https://impactco2.fr",
"matched-at": "https://rdap.nic.fr/domain/impactco2.fr",
"extracted-results": [
- "active"
+ "FR"
+ ],
+ "ip": "64.176.191.126",
+ "timestamp": "2025-03-02T02:01:41.3042782Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/miscellaneous/rdap-whois.yaml",
+ "template-url": "https://templates.nuclei.sh/public/rdap-whois",
+ "template-id": "rdap-whois",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
+ "info": {
+ "name": "RDAP WHOIS",
+ "author": [
+ "ricardomaia",
+ "sttlr"
+ ],
+ "tags": [
+ "miscellaneous",
+ "whois",
+ "rdap",
+ "osint",
+ "misc"
+ ],
+ "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
+ "reference": [
+ "https://about.rdap.org/"
+ ],
+ "severity": "info",
+ "metadata": {
+ "max-request": 1,
+ "verified": true
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+ }
+ },
+ "extractor-name": "secureDNS",
+ "type": "http",
+ "host": "https://impactco2.fr",
+ "matched-at": "https://rdap.nic.fr/domain/impactco2.fr",
+ "extracted-results": [
+ "false"
+ ],
+ "ip": "64.176.191.126",
+ "timestamp": "2025-03-02T02:01:41.304325439Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/miscellaneous/rdap-whois.yaml",
+ "template-url": "https://templates.nuclei.sh/public/rdap-whois",
+ "template-id": "rdap-whois",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
+ "info": {
+ "name": "RDAP WHOIS",
+ "author": [
+ "ricardomaia",
+ "sttlr"
+ ],
+ "tags": [
+ "miscellaneous",
+ "whois",
+ "rdap",
+ "osint",
+ "misc"
+ ],
+ "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
+ "reference": [
+ "https://about.rdap.org/"
+ ],
+ "severity": "info",
+ "metadata": {
+ "max-request": 1,
+ "verified": true
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+ }
+ },
+ "extractor-name": "registrationDate",
+ "type": "http",
+ "host": "https://impactco2.fr",
+ "matched-at": "https://rdap.nic.fr/domain/impactco2.fr",
+ "extracted-results": [
+ "2022-09-15T08:45:46Z"
+ ],
+ "ip": "64.176.191.126",
+ "timestamp": "2025-03-02T02:01:41.304342831Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/miscellaneous/rdap-whois.yaml",
+ "template-url": "https://templates.nuclei.sh/public/rdap-whois",
+ "template-id": "rdap-whois",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
+ "info": {
+ "name": "RDAP WHOIS",
+ "author": [
+ "ricardomaia",
+ "sttlr"
+ ],
+ "tags": [
+ "miscellaneous",
+ "whois",
+ "rdap",
+ "osint",
+ "misc"
+ ],
+ "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
+ "reference": [
+ "https://about.rdap.org/"
+ ],
+ "severity": "info",
+ "metadata": {
+ "max-request": 1,
+ "verified": true
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+ }
+ },
+ "extractor-name": "lastChangeDate",
+ "type": "http",
+ "host": "https://impactco2.fr",
+ "matched-at": "https://rdap.nic.fr/domain/impactco2.fr",
+ "extracted-results": [
+ "2024-04-22T06:42:51.40614Z"
+ ],
+ "ip": "64.176.191.126",
+ "timestamp": "2025-03-02T02:01:41.304359382Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/miscellaneous/rdap-whois.yaml",
+ "template-url": "https://templates.nuclei.sh/public/rdap-whois",
+ "template-id": "rdap-whois",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
+ "info": {
+ "name": "RDAP WHOIS",
+ "author": [
+ "ricardomaia",
+ "sttlr"
+ ],
+ "tags": [
+ "miscellaneous",
+ "whois",
+ "rdap",
+ "osint",
+ "misc"
+ ],
+ "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
+ "reference": [
+ "https://about.rdap.org/"
+ ],
+ "severity": "info",
+ "metadata": {
+ "max-request": 1,
+ "verified": true
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+ }
+ },
+ "extractor-name": "expirationDate",
+ "type": "http",
+ "host": "https://impactco2.fr",
+ "matched-at": "https://rdap.nic.fr/domain/impactco2.fr",
+ "extracted-results": [
+ "2025-09-15T08:45:46Z"
+ ],
+ "ip": "64.176.191.126",
+ "timestamp": "2025-03-02T02:01:41.30437417Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/miscellaneous/rdap-whois.yaml",
+ "template-url": "https://templates.nuclei.sh/public/rdap-whois",
+ "template-id": "rdap-whois",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
+ "info": {
+ "name": "RDAP WHOIS",
+ "author": [
+ "ricardomaia",
+ "sttlr"
+ ],
+ "tags": [
+ "miscellaneous",
+ "whois",
+ "rdap",
+ "osint",
+ "misc"
+ ],
+ "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
+ "reference": [
+ "https://about.rdap.org/"
+ ],
+ "severity": "info",
+ "metadata": {
+ "max-request": 1,
+ "verified": true
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+ }
+ },
+ "extractor-name": "registrantName",
+ "type": "http",
+ "host": "https://impactco2.fr",
+ "matched-at": "https://rdap.nic.fr/domain/impactco2.fr",
+ "extracted-results": [
+ "AGENCE DE L ENVIRONNEMENT ET DE LA MAITRISE DE L ENERGIE"
+ ],
+ "ip": "64.176.191.126",
+ "timestamp": "2025-03-02T02:01:41.304388376Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/miscellaneous/rdap-whois.yaml",
+ "template-url": "https://templates.nuclei.sh/public/rdap-whois",
+ "template-id": "rdap-whois",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
+ "info": {
+ "name": "RDAP WHOIS",
+ "author": [
+ "ricardomaia",
+ "sttlr"
+ ],
+ "tags": [
+ "miscellaneous",
+ "whois",
+ "rdap",
+ "osint",
+ "misc"
+ ],
+ "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
+ "reference": [
+ "https://about.rdap.org/"
+ ],
+ "severity": "info",
+ "metadata": {
+ "max-request": 1,
+ "verified": true
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+ }
+ },
+ "extractor-name": "registrantOrg",
+ "type": "http",
+ "host": "https://impactco2.fr",
+ "matched-at": "https://rdap.nic.fr/domain/impactco2.fr",
+ "extracted-results": [
+ "AGENCE DE L ENVIRONNEMENT ET DE LA MAITRISE DE L ENERGIE"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:41:31.131320499Z",
+ "timestamp": "2025-03-02T02:01:41.304401671Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
"matcher-status": true
},
@@ -12706,293 +12976,7 @@
"production@ademe.fr"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:41:31.131366976Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
- "matcher-status": true
- },
- {
- "template": "http/miscellaneous/rdap-whois.yaml",
- "template-url": "https://templates.nuclei.sh/public/rdap-whois",
- "template-id": "rdap-whois",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
- "info": {
- "name": "RDAP WHOIS",
- "author": [
- "ricardomaia",
- "sttlr"
- ],
- "tags": [
- "miscellaneous",
- "whois",
- "rdap",
- "osint",
- "misc"
- ],
- "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
- "reference": [
- "https://about.rdap.org/"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1,
- "verified": true
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
- }
- },
- "extractor-name": "nameServers",
- "type": "http",
- "host": "https://impactco2.fr",
- "matched-at": "https://rdap.nic.fr/domain/impactco2.fr",
- "extracted-results": [
- "b.ns.developpement-durable.gouv.fr",
- "a.ns.developpement-durable.gouv.fr",
- "nsa.perf1.fr",
- "nsc.perf1.com",
- "nsb.perf1.com"
- ],
- "ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:41:31.131386222Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
- "matcher-status": true
- },
- {
- "template": "http/miscellaneous/rdap-whois.yaml",
- "template-url": "https://templates.nuclei.sh/public/rdap-whois",
- "template-id": "rdap-whois",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
- "info": {
- "name": "RDAP WHOIS",
- "author": [
- "ricardomaia",
- "sttlr"
- ],
- "tags": [
- "miscellaneous",
- "whois",
- "rdap",
- "osint",
- "misc"
- ],
- "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
- "reference": [
- "https://about.rdap.org/"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1,
- "verified": true
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
- }
- },
- "extractor-name": "registrationDate",
- "type": "http",
- "host": "https://impactco2.fr",
- "matched-at": "https://rdap.nic.fr/domain/impactco2.fr",
- "extracted-results": [
- "2022-09-15T08:45:46Z"
- ],
- "ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:41:31.131403694Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
- "matcher-status": true
- },
- {
- "template": "http/miscellaneous/rdap-whois.yaml",
- "template-url": "https://templates.nuclei.sh/public/rdap-whois",
- "template-id": "rdap-whois",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
- "info": {
- "name": "RDAP WHOIS",
- "author": [
- "ricardomaia",
- "sttlr"
- ],
- "tags": [
- "miscellaneous",
- "whois",
- "rdap",
- "osint",
- "misc"
- ],
- "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
- "reference": [
- "https://about.rdap.org/"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1,
- "verified": true
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
- }
- },
- "extractor-name": "lastChangeDate",
- "type": "http",
- "host": "https://impactco2.fr",
- "matched-at": "https://rdap.nic.fr/domain/impactco2.fr",
- "extracted-results": [
- "2024-04-22T06:42:51.40614Z"
- ],
- "ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:41:31.131416448Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
- "matcher-status": true
- },
- {
- "template": "http/miscellaneous/rdap-whois.yaml",
- "template-url": "https://templates.nuclei.sh/public/rdap-whois",
- "template-id": "rdap-whois",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
- "info": {
- "name": "RDAP WHOIS",
- "author": [
- "ricardomaia",
- "sttlr"
- ],
- "tags": [
- "miscellaneous",
- "whois",
- "rdap",
- "osint",
- "misc"
- ],
- "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
- "reference": [
- "https://about.rdap.org/"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1,
- "verified": true
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
- }
- },
- "extractor-name": "expirationDate",
- "type": "http",
- "host": "https://impactco2.fr",
- "matched-at": "https://rdap.nic.fr/domain/impactco2.fr",
- "extracted-results": [
- "2025-09-15T08:45:46Z"
- ],
- "ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:41:31.131436095Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
- "matcher-status": true
- },
- {
- "template": "http/miscellaneous/rdap-whois.yaml",
- "template-url": "https://templates.nuclei.sh/public/rdap-whois",
- "template-id": "rdap-whois",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
- "info": {
- "name": "RDAP WHOIS",
- "author": [
- "ricardomaia",
- "sttlr"
- ],
- "tags": [
- "miscellaneous",
- "whois",
- "rdap",
- "osint",
- "misc"
- ],
- "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
- "reference": [
- "https://about.rdap.org/"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1,
- "verified": true
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
- }
- },
- "extractor-name": "registrantName",
- "type": "http",
- "host": "https://impactco2.fr",
- "matched-at": "https://rdap.nic.fr/domain/impactco2.fr",
- "extracted-results": [
- "AGENCE DE L ENVIRONNEMENT ET DE LA MAITRISE DE L ENERGIE"
- ],
- "ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:41:31.131455902Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
- "matcher-status": true
- },
- {
- "template": "http/miscellaneous/rdap-whois.yaml",
- "template-url": "https://templates.nuclei.sh/public/rdap-whois",
- "template-id": "rdap-whois",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
- "info": {
- "name": "RDAP WHOIS",
- "author": [
- "ricardomaia",
- "sttlr"
- ],
- "tags": [
- "miscellaneous",
- "whois",
- "rdap",
- "osint",
- "misc"
- ],
- "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
- "reference": [
- "https://about.rdap.org/"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1,
- "verified": true
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
- }
- },
- "extractor-name": "registrantOrg",
- "type": "http",
- "host": "https://impactco2.fr",
- "matched-at": "https://rdap.nic.fr/domain/impactco2.fr",
- "extracted-results": [
- "AGENCE DE L ENVIRONNEMENT ET DE LA MAITRISE DE L ENERGIE"
- ],
- "ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:41:31.13147637Z",
+ "timestamp": "2025-03-02T02:01:41.304414294Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
"matcher-status": true
},
@@ -13039,7 +13023,7 @@
"+33.241204120"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:41:31.131495636Z",
+ "timestamp": "2025-03-02T02:01:41.304426858Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
"matcher-status": true
},
@@ -13083,13 +13067,13 @@
"host": "https://impactco2.fr",
"matched-at": "https://rdap.nic.fr/domain/impactco2.fr",
"extracted-results": [
+ "20 avenue du Gresille",
"ANGERS",
"49004",
- "FR",
- "20 avenue du Gresille"
+ "FR"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:41:31.131514882Z",
+ "timestamp": "2025-03-02T02:01:41.30443892Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
"matcher-status": true
},
@@ -13128,15 +13112,15 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "registrantCountry",
+ "extractor-name": "status",
"type": "http",
"host": "https://impactco2.fr",
"matched-at": "https://rdap.nic.fr/domain/impactco2.fr",
"extracted-results": [
- "FR"
+ "active"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:41:31.131534629Z",
+ "timestamp": "2025-03-02T02:01:41.304453247Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
"matcher-status": true
},
@@ -13175,15 +13159,19 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "secureDNS",
+ "extractor-name": "nameServers",
"type": "http",
"host": "https://impactco2.fr",
"matched-at": "https://rdap.nic.fr/domain/impactco2.fr",
"extracted-results": [
- "false"
+ "b.ns.developpement-durable.gouv.fr",
+ "nsa.perf1.fr",
+ "nsc.perf1.com",
+ "nsb.perf1.com",
+ "a.ns.developpement-durable.gouv.fr"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:41:31.13155709Z",
+ "timestamp": "2025-03-02T02:01:41.304466101Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'",
"matcher-status": true
},
@@ -13213,8 +13201,8 @@
"extracted-results": [
"Let's Encrypt"
],
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:48:39.164000212Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:08:52.002853845Z",
"matcher-status": true
},
{
@@ -13243,8 +13231,8 @@
"extracted-results": [
"impactco2.fr"
],
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:48:39.164161794Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:08:52.003037147Z",
"matcher-status": true
},
{
@@ -13274,8 +13262,8 @@
"extracted-results": [
"tls12"
],
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:48:40.878461653Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:08:53.77851496Z",
"matcher-status": true
},
{
@@ -13305,8 +13293,8 @@
"extracted-results": [
"tls13"
],
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T01:48:41.075981149Z",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:08:53.973801151Z",
"matcher-status": true
}
],
@@ -13314,7 +13302,7 @@
{
"requestedUrl": "https://impactco2.fr/",
"finalUrl": "https://impactco2.fr/",
- "fetchTime": "2025-01-26T02:07:31.408Z",
+ "fetchTime": "2025-03-02T01:52:48.462Z",
"runWarnings": [],
"categories": {
"performance": {
@@ -13377,53 +13365,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 5845,
+ "numericValue": 8006,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 2366,
- "firstMeaningfulPaint": 2366,
- "largestContentfulPaint": 3954,
- "interactive": 5845,
- "speedIndex": 3278,
- "totalBlockingTime": 200,
- "maxPotentialFID": 449,
- "cumulativeLayoutShift": 0.008702909469604492,
- "cumulativeLayoutShiftMainFrame": 0.008702909469604492,
- "totalCumulativeLayoutShift": 0.008702909469604492,
+ "firstContentfulPaint": 2021,
+ "firstMeaningfulPaint": 2021,
+ "largestContentfulPaint": 3492,
+ "interactive": 8006,
+ "speedIndex": 2038,
+ "totalBlockingTime": 260,
+ "maxPotentialFID": 292,
+ "cumulativeLayoutShift": 0.008712645848592122,
+ "cumulativeLayoutShiftMainFrame": 0.008712645848592122,
+ "totalCumulativeLayoutShift": 0.008712645848592122,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 1812076119,
+ "observedTimeOriginTs": 631536175,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 1812076119,
- "observedFirstPaint": 826,
- "observedFirstPaintTs": 1812901886,
- "observedFirstContentfulPaint": 826,
- "observedFirstContentfulPaintTs": 1812901886,
- "observedFirstContentfulPaintAllFrames": 826,
- "observedFirstContentfulPaintAllFramesTs": 1812901886,
- "observedFirstMeaningfulPaint": 826,
- "observedFirstMeaningfulPaintTs": 1812901886,
- "observedLargestContentfulPaint": 826,
- "observedLargestContentfulPaintTs": 1812901886,
- "observedLargestContentfulPaintAllFrames": 826,
- "observedLargestContentfulPaintAllFramesTs": 1812901886,
- "observedTraceEnd": 5360,
- "observedTraceEndTs": 1817436388,
- "observedLoad": 2979,
- "observedLoadTs": 1815055456,
- "observedDomContentLoaded": 821,
- "observedDomContentLoadedTs": 1812897278,
- "observedCumulativeLayoutShift": 0.008702909469604492,
- "observedCumulativeLayoutShiftMainFrame": 0.008702909469604492,
- "observedTotalCumulativeLayoutShift": 0.008702909469604492,
- "observedFirstVisualChange": 834,
- "observedFirstVisualChangeTs": 1812910119,
- "observedLastVisualChange": 1667,
- "observedLastVisualChangeTs": 1813743119,
- "observedSpeedIndex": 974,
- "observedSpeedIndexTs": 1813049642
+ "observedNavigationStartTs": 631536175,
+ "observedFirstPaint": 661,
+ "observedFirstPaintTs": 632196696,
+ "observedFirstContentfulPaint": 661,
+ "observedFirstContentfulPaintTs": 632196696,
+ "observedFirstContentfulPaintAllFrames": 661,
+ "observedFirstContentfulPaintAllFramesTs": 632196696,
+ "observedFirstMeaningfulPaint": 661,
+ "observedFirstMeaningfulPaintTs": 632196696,
+ "observedLargestContentfulPaint": 661,
+ "observedLargestContentfulPaintTs": 632196696,
+ "observedLargestContentfulPaintAllFrames": 661,
+ "observedLargestContentfulPaintAllFramesTs": 632196696,
+ "observedTraceEnd": 4653,
+ "observedTraceEndTs": 636188716,
+ "observedLoad": 2294,
+ "observedLoadTs": 633829727,
+ "observedDomContentLoaded": 666,
+ "observedDomContentLoadedTs": 632202495,
+ "observedCumulativeLayoutShift": 0.008712645848592122,
+ "observedCumulativeLayoutShiftMainFrame": 0.008712645848592122,
+ "observedTotalCumulativeLayoutShift": 0.008712645848592122,
+ "observedFirstVisualChange": 671,
+ "observedFirstVisualChangeTs": 632207175,
+ "observedLastVisualChange": 821,
+ "observedLastVisualChangeTs": 632357175,
+ "observedSpeedIndex": 696,
+ "observedSpeedIndexTs": 632232043
},
{
"lcpInvalidated": false
@@ -13441,23 +13429,23 @@
"type": "debugdata",
"items": [
{
- "numRequests": 62,
+ "numRequests": 63,
"numScripts": 26,
"numStylesheets": 9,
"numFonts": 5,
- "numTasks": 1083,
- "numTasksOver10ms": 6,
+ "numTasks": 1032,
+ "numTasksOver10ms": 4,
"numTasksOver25ms": 1,
"numTasksOver50ms": 1,
- "numTasksOver100ms": 1,
+ "numTasksOver100ms": 0,
"numTasksOver500ms": 0,
- "rtt": 5.263,
- "throughput": 5378733.957406589,
- "maxRtt": 92.70100000000001,
- "maxServerLatency": 403.425,
- "totalByteWeight": 1143788,
- "totalTaskTime": 378.39199999999914,
- "mainDocumentTransferSize": 147262
+ "rtt": 5.314,
+ "throughput": 11220262.968618609,
+ "maxRtt": 89.56899999999999,
+ "maxServerLatency": 116.02499999999998,
+ "totalByteWeight": 1129476,
+ "totalTaskTime": 344.925999999998,
+ "mainDocumentTransferSize": 153897
}
]
}
@@ -13497,11 +13485,12 @@
},
{
"slug": "pc",
- "mention": null,
- "maxScore": 0,
- "score": 0,
+ "mention": "Confidentialité",
+ "maxScore": 4,
+ "score": 4,
"missingWords": [],
- "missingTrackers": []
+ "missingTrackers": [],
+ "declarationUrl": "https://impactco2.fr/politique-de-confidentialite"
}
],
"betagouv": {
@@ -13575,15 +13564,15 @@
"width": 1920,
"height": 1080,
"url": "https://impactco2.fr",
- "size": 3475.28,
- "nodes": 385,
+ "size": 3502.378,
+ "nodes": 401,
"requests": 66,
"grade": "C",
"score": 56,
"ges": 1.88,
"water": 2.82,
"ecoindex_version": "5.4.2",
- "date": "2025-01-26 01:55:05.040988",
+ "date": "2025-03-02 01:46:39.455473",
"page_type": null
}
],
@@ -13598,17 +13587,20 @@
"apdexGrade": "A",
"uptime": 100,
"uptimeGrade": "A",
+ "nmapGrade": "A",
+ "nmapOpenPortsCount": 2,
+ "nmapOpenPortsGrade": "A",
"dependabotGrade": "A",
"dependabotCount": 0,
- "testsslExpireSoon": true,
- "testsslExpireDate": "2025-02-26T13:56:00.000Z",
+ "testsslExpireSoon": false,
+ "testsslExpireDate": "2025-04-27T13:57:00.000Z",
"testsslGrade": "A+",
"cookiesGrade": null,
"cookiesCount": null,
"trackersGrade": null,
"trackersCount": null,
- "zapCount": 11,
- "zapGrade": "F",
+ "zapCount": 9,
+ "zapGrade": "D",
"lighthouse_performance": 0.78,
"lighthouse_performanceGrade": "B",
"lighthouse_accessibility": 1,
@@ -13624,13 +13616,13 @@
"budgetPageGrade": "A",
"declaration-a11y": "C",
"declaration-rgpd-ml": "A",
- "declaration-rgpd-pc": "F",
+ "declaration-rgpd-pc": "A",
"ecoindexGrade": "C",
"dsfrGrade": "F"
}
},
{
- "404": [],
+ "404": null,
"url": "https://preimpactco2.osc-fr1.scalingo.io",
"category": "startup",
"betaId": "impact.co2",
@@ -13666,255 +13658,218 @@
}
},
"http": {
- "url": "https://preimpactco2.osc-fr1.scalingo.io",
- "algorithm_version": 3,
- "end_time": "Sun, 20 Oct 2024 02:23:43 GMT",
- "grade": "B+",
- "hidden": false,
- "likelihood_indicator": "MEDIUM",
- "response_headers": {
- "Cache-Control": "s-maxage=1, stale-while-revalidate",
- "Connection": "keep-alive",
- "Content-Encoding": "gzip",
- "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv",
- "Content-Type": "text/html; charset=utf-8",
- "Date": "Sun, 20 Oct 2024 02:23:40 GMT",
- "ETag": "\"102udxqfki0ao3z\"",
- "Transfer-Encoding": "chunked",
- "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding",
- "X-Content-Type-Options": "nosniff",
- "X-Powered-By": "Next.js",
- "X-Request-ID": "50ee4b03-9397-40c6-862a-43e7b1bdb864",
- "X-XSS-Protection": "1; mode=block",
- "strict-transport-security": "max-age=31536000",
- "x-nextjs-cache": "HIT"
- },
- "scan_id": 57047870,
- "score": 80,
- "start_time": "Sun, 20 Oct 2024 02:23:38 GMT",
- "state": "FINISHED",
- "status_code": 200,
- "tests_failed": 1,
- "tests_passed": 9,
- "tests_quantity": 10,
- "details": {
+ "scan": {
+ "algorithmVersion": 4,
+ "grade": "B+",
+ "error": null,
+ "score": 80,
+ "statusCode": 200,
+ "testsFailed": 1,
+ "testsPassed": 9,
+ "testsQuantity": 10,
+ "responseHeaders": {
+ "date": "Sun, 02 Mar 2025 02:06:07 GMT",
+ "content-type": "text/html; charset=utf-8",
+ "transfer-encoding": "chunked",
+ "connection": "close",
+ "x-request-id": "f0da3db1-dba7-4eea-b069-67bb8d2238d1",
+ "x-content-type-options": "nosniff",
+ "x-xss-protection": "1; mode=block",
+ "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv",
+ "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding",
+ "x-nextjs-cache": "STALE",
+ "x-nextjs-prerender": "1",
+ "x-nextjs-stale-time": "4294967294",
+ "x-powered-by": "Next.js",
+ "cache-control": "s-maxage=1, stale-while-revalidate=31535999",
+ "etag": "\"13rsuyjrpc0bz0l\"",
+ "strict-transport-security": "max-age=31536000"
+ }
+ },
+ "tests": {
"content-security-policy": {
"expectation": "csp-implemented-with-no-unsafe",
- "name": "content-security-policy",
- "output": {
- "data": {
- "base-uri": [
- "'self'"
- ],
- "connect-src": [
- "https://stats.beta.gouv.fr",
- "https://cdn.jsdelivr.net",
- "'self'",
- "https://photon.komoot.io",
- "https://sentry.incubateur.net"
- ],
- "default-src": [
- "'self'"
- ],
- "font-src": [
- "data:",
- "https:",
- "'self'"
- ],
- "form-action": [
- "'self'"
- ],
- "frame-ancestors": [
- "file:",
- "https:",
- "'self'"
- ],
- "frame-src": [
- "https://cloud.contact.ademe.fr/impact-CO2-miniform",
- "https://cloud.contact.ademe.fr/impact-CO2-rdv",
- "'self'"
- ],
- "img-src": [
- "data:",
- "https:",
- "'self'"
- ],
- "object-src": [
- "'none'"
- ],
- "script-src": [
- "'unsafe-inline'",
- "https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php",
- "https://stats.beta.gouv.fr/matomo.js",
- "'self'"
- ],
- "script-src-attr": [
- "'none'"
- ],
- "style-src": [
- "'unsafe-inline'",
- "https:",
- "'self'"
- ],
- "upgrade-insecure-requests": [
- "'none'"
- ]
- },
- "http": true,
- "meta": false,
- "numPolicies": 1,
- "policy": {
- "antiClickjacking": false,
- "defaultNone": false,
- "insecureBaseUri": false,
- "insecureFormAction": false,
- "insecureSchemeActive": false,
- "insecureSchemePassive": false,
- "strictDynamic": false,
- "unsafeEval": false,
- "unsafeInline": true,
- "unsafeInlineStyle": true,
- "unsafeObjects": false
- }
- },
"pass": false,
"result": "csp-implemented-with-unsafe-inline",
- "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.",
- "score_modifier": -20
+ "scoreModifier": -20,
+ "data": {
+ "default-src": [
+ "'self'"
+ ],
+ "base-uri": [
+ "'self'"
+ ],
+ "font-src": [
+ "'self'",
+ "data:",
+ "https:"
+ ],
+ "form-action": [
+ "'self'"
+ ],
+ "frame-ancestors": [
+ "'self'",
+ "file:",
+ "https:"
+ ],
+ "img-src": [
+ "'self'",
+ "data:",
+ "https:"
+ ],
+ "object-src": [
+ "'none'"
+ ],
+ "script-src": [
+ "'self'",
+ "'unsafe-inline'",
+ "https://stats.beta.gouv.fr/matomo.js",
+ "https://stats.beta.gouv.fr/plugins/heatmasessionrecording/configs.php"
+ ],
+ "script-src-attr": [
+ "'none'"
+ ],
+ "style-src": [
+ "'self'",
+ "'unsafe-inline'",
+ "https:"
+ ],
+ "upgrade-insecure-requests": [
+ "'none'"
+ ],
+ "connect-src": [
+ "'self'",
+ "https://cdn.jsdelivr.net",
+ "https://photon.komoot.io",
+ "https://sentry.incubateur.net",
+ "https://stats.beta.gouv.fr"
+ ],
+ "frame-src": [
+ "'self'",
+ "https://cloud.contact.ademe.fr/impact-co2-miniform",
+ "https://cloud.contact.ademe.fr/impact-co2-rdv"
+ ]
+ },
+ "http": true,
+ "meta": false,
+ "policy": {
+ "antiClickjacking": false,
+ "defaultNone": false,
+ "insecureBaseUri": false,
+ "insecureFormAction": false,
+ "insecureSchemeActive": false,
+ "insecureSchemePassive": false,
+ "strictDynamic": false,
+ "unsafeEval": false,
+ "unsafeInline": true,
+ "unsafeInlineStyle": true,
+ "unsafeObjects": false
+ },
+ "numPolicies": 1
},
"cookies": {
"expectation": "cookies-secure-with-httponly-sessions",
- "name": "cookies",
- "output": {
- "data": null,
- "sameSite": null
- },
"pass": true,
"result": "cookies-not-found",
- "score_description": "No cookies detected",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "sameSite": false
},
"cross-origin-resource-sharing": {
"expectation": "cross-origin-resource-sharing-not-implemented",
- "name": "cross-origin-resource-sharing",
- "output": {
- "data": {
- "acao": null,
- "clientaccesspolicy": null,
- "crossdomain": null
- }
- },
"pass": true,
"result": "cross-origin-resource-sharing-not-implemented",
- "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null
},
"redirection": {
"expectation": "redirection-to-https",
- "name": "redirection",
- "output": {
- "destination": "https://preimpactco2.osc-fr1.scalingo.io/",
- "redirects": true,
- "route": [
- "http://preimpactco2.osc-fr1.scalingo.io/",
- "https://preimpactco2.osc-fr1.scalingo.io/"
- ],
- "status_code": 200
- },
"pass": true,
"result": "redirection-to-https",
- "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "destination": "https://preimpactco2.osc-fr1.scalingo.io/",
+ "redirects": true,
+ "route": [
+ "http://preimpactco2.osc-fr1.scalingo.io/",
+ "https://preimpactco2.osc-fr1.scalingo.io/"
+ ],
+ "statusCode": 200
},
"referrer-policy": {
"expectation": "referrer-policy-private",
- "name": "referrer-policy",
- "output": {
- "data": null,
- "http": false,
- "meta": false
- },
"pass": true,
"result": "referrer-policy-not-implemented",
- "score_description": "Referrer-Policy header not implemented",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
},
"strict-transport-security": {
"expectation": "hsts-implemented-max-age-at-least-six-months",
- "name": "strict-transport-security",
- "output": {
- "data": "max-age=31536000",
- "includeSubDomains": false,
- "max-age": 31536000,
- "preload": false,
- "preloaded": false
- },
"pass": true,
"result": "hsts-implemented-max-age-at-least-six-months",
- "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "max-age=31536000",
+ "includeSubDomains": false,
+ "maxAge": 31536000,
+ "preload": false,
+ "preloaded": false
},
"subresource-integrity": {
"expectation": "sri-implemented-and-external-scripts-loaded-securely",
- "name": "subresource-integrity",
- "output": {
- "data": {}
- },
"pass": true,
"result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin",
- "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": {}
},
"x-content-type-options": {
"expectation": "x-content-type-options-nosniff",
- "name": "x-content-type-options",
- "output": {
- "data": "nosniff"
- },
"pass": true,
"result": "x-content-type-options-nosniff",
- "score_description": "X-Content-Type-Options header set to \"nosniff\"",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "nosniff"
},
"x-frame-options": {
"expectation": "x-frame-options-sameorigin-or-deny",
- "name": "x-frame-options",
- "output": {
- "data": null
- },
"pass": true,
"result": "x-frame-options-implemented-via-csp",
- "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive",
- "score_modifier": 5
- },
- "x-xss-protection": {
- "expectation": "x-xss-protection-disabled",
- "name": "x-xss-protection",
- "output": {
- "data": "1; mode=block"
- },
+ "scoreModifier": 5,
+ "data": null
+ },
+ "cross-origin-resource-policy": {
+ "expectation": "corp-implemented-with-same-site",
"pass": true,
- "result": "x-xss-protection-enabled-mode-block",
- "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"",
- "score_modifier": 0
+ "result": "corp-not-implemented",
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
}
}
},
"updownio": {
"token": "cld3",
"url": "https://preimpactco2.osc-fr1.scalingo.io",
+ "type": "https",
"alias": "ImpactCO2 - Staging",
- "last_status": 200,
- "uptime": 99.772,
+ "uptime": 100,
"down": false,
"down_since": null,
- "up_since": "2025-01-23T23:47:18Z",
+ "up_since": "2025-02-23T02:11:32Z",
"error": null,
"period": 300,
- "apdex_t": 0.5,
"string_match": "",
"enabled": true,
"published": true,
+ "recipients": [
+ "email:3429082144"
+ ],
+ "last_check_at": "2025-03-02T02:21:22Z",
+ "next_check_at": "2025-03-02T02:26:20Z",
+ "created_at": "2024-06-27T10:06:14Z",
+ "mute_until": null,
+ "last_status": 200,
+ "apdex_t": 0.5,
"disabled_locations": [
"lan",
"mia",
@@ -13923,38 +13878,52 @@
"tok",
"syd"
],
- "recipients": [
- "email:3429082144"
- ],
- "last_check_at": "2025-01-26T02:23:26Z",
- "next_check_at": "2025-01-26T02:28:24Z",
- "created_at": "2024-06-27T10:06:14Z",
- "mute_until": null,
- "favicon_url": "https://preimpactco2.osc-fr1.scalingo.io/favicon.ico",
"custom_headers": {},
+ "favicon_url": "https://preimpactco2.osc-fr1.scalingo.io/favicon.ico",
"http_verb": "GET/HEAD",
"http_body": "",
"ssl": {
- "tested_at": "2025-01-26T01:43:41Z",
+ "tested_at": "2025-03-02T01:36:36Z",
"expires_at": "2025-04-09T23:59:59Z",
"valid": true,
"error": null
},
"metrics": {
- "apdex": 0.955,
+ "apdex": 0.844,
"timings": {
"redirect": 0,
- "namelookup": 8,
- "connection": 25,
- "handshake": 28,
- "response": 193,
- "total": 254
+ "namelookup": 23,
+ "connection": 24,
+ "handshake": 29,
+ "response": 3246,
+ "total": 3322
}
},
"uptimeGrade": "A",
- "apdexGrade": "E"
+ "apdexGrade": "F"
+ },
+ "nmap": {
+ "host": "preimpactco2.osc-fr1.scalingo.io",
+ "protocol": "tcp",
+ "closed_ports": "998",
+ "open_ports": [
+ {
+ "service": {
+ "name": "http",
+ "id": "80",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "https",
+ "id": "443",
+ "vulnerabilities": []
+ }
+ }
+ ],
+ "grade": "A"
},
- "nmap": null,
"dependabot": {
"totalCount": 0,
"grade": "A",
@@ -13973,77 +13942,77 @@
"testssl": [
{
"id": "service",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -14051,7 +14020,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -14059,7 +14028,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -14067,7 +14036,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -14075,7 +14044,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -14083,7 +14052,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -14091,483 +14060,483 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 60 days"
+ "severity": "MEDIUM",
+ "finding": "expires < 60 days (38)"
},
{
"id": "cert_notBefore",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2024-04-09 00:00"
},
{
"id": "cert_notAfter",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
- "severity": "OK",
+ "severity": "MEDIUM",
"finding": "2025-04-09 23:59"
},
{
"id": "cert_extlifeSpan",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http://ocsp.sectigo.com"
},
{
"id": "OCSP_stapling",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com"
},
{
"id": "certificate_transparency",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2023-08-02 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "2033-08-01 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "1737858068"
+ "finding": "1740881272"
},
{
"id": "HSTS_time",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "X-Powered-By: Next.js"
},
{
"id": "cookie_count",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Content-Type-Options",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv"
},
{
"id": "X-XSS-Protection",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "1; mode=block"
},
{
"id": "Cache-Control",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "s-maxage=1, stale-while-revalidate=31535999"
},
{
"id": "banner_reverseproxy",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -14575,7 +14544,7 @@
},
{
"id": "heartbleed",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -14584,7 +14553,7 @@
},
{
"id": "CCS",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -14593,7 +14562,7 @@
},
{
"id": "ticketbleed",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -14602,7 +14571,7 @@
},
{
"id": "ROBOT",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -14611,7 +14580,7 @@
},
{
"id": "secure_renego",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -14619,7 +14588,7 @@
},
{
"id": "secure_client_renego",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -14628,7 +14597,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -14637,7 +14606,7 @@
},
{
"id": "BREACH",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -14646,7 +14615,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -14655,14 +14624,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -14671,7 +14640,7 @@
},
{
"id": "FREAK",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -14680,7 +14649,7 @@
},
{
"id": "DROWN",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -14689,7 +14658,7 @@
},
{
"id": "DROWN_hint",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -14698,7 +14667,7 @@
},
{
"id": "LOGJAM",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -14707,7 +14676,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -14716,7 +14685,7 @@
},
{
"id": "BEAST",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -14725,7 +14694,7 @@
},
{
"id": "LUCKY13",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -14734,7 +14703,7 @@
},
{
"id": "winshock",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -14743,7 +14712,7 @@
},
{
"id": "RC4",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -14752,392 +14721,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -15145,7 +15114,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -15153,7 +15122,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -15161,7 +15130,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -15169,7 +15138,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -15177,7 +15146,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -15185,483 +15154,483 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 60 days"
+ "severity": "MEDIUM",
+ "finding": "expires < 60 days (38)"
},
{
"id": "cert_notBefore",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2024-04-09 00:00"
},
{
"id": "cert_notAfter",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
- "severity": "OK",
+ "severity": "MEDIUM",
"finding": "2025-04-09 23:59"
},
{
"id": "cert_extlifeSpan",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "http://ocsp.sectigo.com"
},
{
"id": "OCSP_stapling",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com"
},
{
"id": "certificate_transparency",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2023-08-02 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "2033-08-01 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "-3 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "1737858180"
+ "finding": "1740881359"
},
{
"id": "HSTS_time",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "X-Powered-By: Next.js"
},
{
"id": "cookie_count",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Content-Type-Options",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv"
},
{
"id": "X-XSS-Protection",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "1; mode=block"
},
{
"id": "Cache-Control",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "s-maxage=1, stale-while-revalidate=31535999"
},
{
"id": "banner_reverseproxy",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -15669,7 +15638,7 @@
},
{
"id": "heartbleed",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -15678,7 +15647,7 @@
},
{
"id": "CCS",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -15687,7 +15656,7 @@
},
{
"id": "ticketbleed",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -15696,7 +15665,7 @@
},
{
"id": "ROBOT",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -15705,7 +15674,7 @@
},
{
"id": "secure_renego",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -15713,7 +15682,7 @@
},
{
"id": "secure_client_renego",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -15722,7 +15691,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -15731,7 +15700,7 @@
},
{
"id": "BREACH",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -15740,7 +15709,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -15749,14 +15718,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -15765,7 +15734,7 @@
},
{
"id": "FREAK",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -15774,7 +15743,7 @@
},
{
"id": "DROWN",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -15783,7 +15752,7 @@
},
{
"id": "DROWN_hint",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -15792,7 +15761,7 @@
},
{
"id": "LOGJAM",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -15801,7 +15770,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -15810,7 +15779,7 @@
},
{
"id": "BEAST",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -15819,7 +15788,7 @@
},
{
"id": "LUCKY13",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -15828,7 +15797,7 @@
},
{
"id": "winshock",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -15837,7 +15806,7 @@
},
{
"id": "RC4",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -15846,315 +15815,315 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "preimpactco2.osc-fr1.scalingo.io/5.104.101.30",
+ "ip": "preimpactco2.osc-fr1.scalingo.io/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "A+"
@@ -16512,8 +16481,8 @@
"id": "cert_expirationStatus",
"ip": "preimpactco2.osc-fr1.scalingo.io/109.232.236.90",
"port": "443",
- "severity": "OK",
- "finding": "73 >= 60 days"
+ "severity": "MEDIUM",
+ "finding": "expires < 60 days (38)"
},
{
"id": "cert_notBefore",
@@ -16526,7 +16495,7 @@
"id": "cert_notAfter",
"ip": "preimpactco2.osc-fr1.scalingo.io/109.232.236.90",
"port": "443",
- "severity": "OK",
+ "severity": "MEDIUM",
"finding": "2025-04-09 23:59"
},
{
@@ -16667,14 +16636,14 @@
"ip": "preimpactco2.osc-fr1.scalingo.io/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "-2 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
"ip": "preimpactco2.osc-fr1.scalingo.io/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "1737858297"
+ "finding": "1740881442"
},
{
"id": "HSTS_time",
@@ -17606,8 +17575,8 @@
"id": "cert_expirationStatus",
"ip": "preimpactco2.osc-fr1.scalingo.io/148.253.75.120",
"port": "443",
- "severity": "OK",
- "finding": "73 >= 60 days"
+ "severity": "MEDIUM",
+ "finding": "expires < 60 days (38)"
},
{
"id": "cert_notBefore",
@@ -17620,7 +17589,7 @@
"id": "cert_notAfter",
"ip": "preimpactco2.osc-fr1.scalingo.io/148.253.75.120",
"port": "443",
- "severity": "OK",
+ "severity": "MEDIUM",
"finding": "2025-04-09 23:59"
},
{
@@ -17761,14 +17730,14 @@
"ip": "preimpactco2.osc-fr1.scalingo.io/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "-2 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
"ip": "preimpactco2.osc-fr1.scalingo.io/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "1737858410"
+ "finding": "1740881519"
},
{
"id": "HSTS_time",
@@ -18352,7 +18321,7 @@
"ip": "preimpactco2.osc-fr1.scalingo.io/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "462"
+ "finding": "330"
}
],
"thirdparties": {
@@ -18364,207 +18333,16 @@
"wappalyzer": {
"urls": {
"https://preimpactco2.osc-fr1.scalingo.io/": {
- "status": 200
+ "status": 0,
+ "error": "Navigation timeout of 10000 ms exceeded (https://preimpactco2.osc-fr1.scalingo.io/)"
}
},
- "technologies": [
- {
- "slug": "sentry",
- "name": "Sentry",
- "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.",
- "confidence": 100,
- "version": null,
- "icon": "Sentry.svg",
- "website": "https://sentry.io/",
- "cpe": null,
- "categories": [
- {
- "id": 13,
- "slug": "issue-trackers",
- "name": "Issue trackers"
- }
- ],
- "rootPath": true
- },
- {
- "slug": "node-js",
- "name": "Node.js",
- "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.",
- "confidence": 100,
- "version": null,
- "icon": "Node.js.svg",
- "website": "https://nodejs.org",
- "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*",
- "categories": [
- {
- "id": 27,
- "slug": "programming-languages",
- "name": "Programming languages"
- }
- ]
- },
- {
- "slug": "react",
- "name": "React",
- "description": "React is an open-source JavaScript library for building user interfaces or UI components.",
- "confidence": 100,
- "version": null,
- "icon": "React.svg",
- "website": "https://reactjs.org",
- "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*",
- "categories": [
- {
- "id": 12,
- "slug": "javascript-frameworks",
- "name": "JavaScript frameworks"
- }
- ]
- },
- {
- "slug": "next-js",
- "name": "Next.js",
- "description": "Next.js is a React framework for developing single page Javascript applications.",
- "confidence": 100,
- "version": "15.0.3",
- "icon": "Next.js.svg",
- "website": "https://nextjs.org",
- "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*",
- "categories": [
- {
- "id": 12,
- "slug": "javascript-frameworks",
- "name": "JavaScript frameworks"
- },
- {
- "id": 18,
- "slug": "web-frameworks",
- "name": "Web frameworks"
- },
- {
- "id": 22,
- "slug": "web-servers",
- "name": "Web servers"
- },
- {
- "id": 57,
- "slug": "static-site-generator",
- "name": "Static site generator"
- }
- ],
- "rootPath": true
- },
- {
- "slug": "priority-hints",
- "name": "Priority Hints",
- "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.",
- "confidence": 100,
- "version": null,
- "icon": "Priority Hints.svg",
- "website": "https://wicg.github.io/priority-hints/",
- "cpe": null,
- "categories": [
- {
- "id": 92,
- "slug": "performance",
- "name": "Performance"
- }
- ],
- "rootPath": true
- },
- {
- "slug": "jsdelivr",
- "name": "jsDelivr",
- "description": "JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.",
- "confidence": 100,
- "version": null,
- "icon": "jsdelivr-icon.svg",
- "website": "https://www.jsdelivr.com/",
- "cpe": null,
- "categories": [
- {
- "id": 31,
- "slug": "cdn",
- "name": "CDN"
- }
- ],
- "rootPath": true
- },
- {
- "slug": "hsts",
- "name": "HSTS",
- "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.",
- "confidence": 100,
- "version": null,
- "icon": "default.svg",
- "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1",
- "cpe": null,
- "categories": [
- {
- "id": 16,
- "slug": "security",
- "name": "Security"
- }
- ],
- "rootPath": true
- },
- {
- "slug": "webpack",
- "name": "Webpack",
- "description": "Webpack is an open-source JavaScript module bundler.",
- "confidence": 100,
- "version": null,
- "icon": "Webpack.svg",
- "website": "https://webpack.js.org/",
- "cpe": null,
- "categories": [
- {
- "id": 19,
- "slug": "miscellaneous",
- "name": "Miscellaneous"
- }
- ]
- },
- {
- "slug": "open-graph",
- "name": "Open Graph",
- "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.",
- "confidence": 100,
- "version": null,
- "icon": "Open Graph.png",
- "website": "https://ogp.me",
- "cpe": null,
- "categories": [
- {
- "id": 19,
- "slug": "miscellaneous",
- "name": "Miscellaneous"
- }
- ],
- "rootPath": true
- },
- {
- "slug": "module-federation",
- "name": "Module Federation",
- "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.",
- "confidence": 50,
- "version": null,
- "icon": "Webpack.svg",
- "website": "https://webpack.js.org/concepts/module-federation/",
- "cpe": null,
- "categories": [
- {
- "id": 19,
- "slug": "miscellaneous",
- "name": "Miscellaneous"
- }
- ]
- }
- ]
+ "technologies": []
},
"zap": {
"@programName": "ZAP",
"@version": "2.16.0",
- "@generated": "Sun, 26 Jan 2025 02:07:02",
+ "@generated": "Sun, 2 Mar 2025 02:04:46",
"site": [
{
"@name": "https://preimpactco2.osc-fr1.scalingo.io",
@@ -18621,6 +18399,13 @@
"riskdesc": "Low (Medium)",
"desc": "The web/application server is leaking information via one or more \"X-Powered-By\" HTTP response headers. Access to such information may facilitate attackers identifying other frameworks/components your web application is reliant upon and the vulnerabilities such components may be subject to.
"
},
+ {
+ "name": "Strict-Transport-Security Header Not Set",
+ "riskcode": "1",
+ "confidence": "3",
+ "riskdesc": "Low (High)",
+ "desc": "HTTP Strict Transport Security (HSTS) is a web security policy mechanism whereby a web server declares that complying user agents (such as a web browser) are to interact with it using only secure HTTPS connections (i.e. HTTP layered over TLS/SSL). HSTS is an IETF standards track protocol and is specified in RFC 6797.
"
+ },
{
"name": "Timestamp Disclosure - Unix",
"riskcode": "1",
@@ -19450,7 +19235,7 @@
{
"requestedUrl": "https://preimpactco2.osc-fr1.scalingo.io/",
"finalUrl": "https://preimpactco2.osc-fr1.scalingo.io/",
- "fetchTime": "2025-01-26T02:19:46.444Z",
+ "fetchTime": "2025-03-02T02:05:00.724Z",
"runWarnings": [],
"categories": {
"performance": {
@@ -19461,7 +19246,7 @@
"snapshot"
],
"id": "performance",
- "score": 0.68
+ "score": 0.45
},
"accessibility": {
"title": "Accessibility",
@@ -19493,7 +19278,7 @@
"snapshot"
],
"id": "seo",
- "score": 1
+ "score": 0.92
},
"pwa": {
"title": "PWA",
@@ -19513,53 +19298,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 8539,
+ "numericValue": 20089,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 2653,
- "firstMeaningfulPaint": 2653,
- "largestContentfulPaint": 4020,
- "interactive": 8539,
- "speedIndex": 2960,
- "totalBlockingTime": 355,
- "maxPotentialFID": 384,
- "cumulativeLayoutShift": 0.008702909469604492,
- "cumulativeLayoutShiftMainFrame": 0.008702909469604492,
- "totalCumulativeLayoutShift": 0.008702909469604492,
+ "firstContentfulPaint": 19999,
+ "firstMeaningfulPaint": 19999,
+ "largestContentfulPaint": 19999,
+ "interactive": 20089,
+ "speedIndex": 39476,
+ "totalBlockingTime": 65,
+ "maxPotentialFID": 413,
+ "cumulativeLayoutShift": 0.008712645848592122,
+ "cumulativeLayoutShiftMainFrame": 0.008712645848592122,
+ "totalCumulativeLayoutShift": 0.008712645848592122,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 1735092561,
+ "observedTimeOriginTs": 456846275,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 1735092561,
- "observedFirstPaint": 992,
- "observedFirstPaintTs": 1736085040,
- "observedFirstContentfulPaint": 992,
- "observedFirstContentfulPaintTs": 1736085040,
- "observedFirstContentfulPaintAllFrames": 992,
- "observedFirstContentfulPaintAllFramesTs": 1736085040,
- "observedFirstMeaningfulPaint": 992,
- "observedFirstMeaningfulPaintTs": 1736085040,
- "observedLargestContentfulPaint": 992,
- "observedLargestContentfulPaintTs": 1736085040,
- "observedLargestContentfulPaintAllFrames": 992,
- "observedLargestContentfulPaintAllFramesTs": 1736085040,
- "observedTraceEnd": 6400,
- "observedTraceEndTs": 1741492367,
- "observedLoad": 4051,
- "observedLoadTs": 1739143319,
- "observedDomContentLoaded": 1007,
- "observedDomContentLoadedTs": 1736100042,
- "observedCumulativeLayoutShift": 0.008702909469604492,
- "observedCumulativeLayoutShiftMainFrame": 0.008702909469604492,
- "observedTotalCumulativeLayoutShift": 0.008702909469604492,
- "observedFirstVisualChange": 1004,
- "observedFirstVisualChangeTs": 1736096561,
- "observedLastVisualChange": 1337,
- "observedLastVisualChangeTs": 1736429561,
- "observedSpeedIndex": 1061,
- "observedSpeedIndexTs": 1736153718
+ "observedNavigationStartTs": 456846275,
+ "observedFirstPaint": 18697,
+ "observedFirstPaintTs": 475542983,
+ "observedFirstContentfulPaint": 18697,
+ "observedFirstContentfulPaintTs": 475542983,
+ "observedFirstContentfulPaintAllFrames": 18697,
+ "observedFirstContentfulPaintAllFramesTs": 475542983,
+ "observedFirstMeaningfulPaint": 18697,
+ "observedFirstMeaningfulPaintTs": 475542983,
+ "observedLargestContentfulPaint": 18697,
+ "observedLargestContentfulPaintTs": 475542983,
+ "observedLargestContentfulPaintAllFrames": 18697,
+ "observedLargestContentfulPaintAllFramesTs": 475542983,
+ "observedTraceEnd": 27020,
+ "observedTraceEndTs": 483866519,
+ "observedLoad": 21280,
+ "observedLoadTs": 478126756,
+ "observedDomContentLoaded": 18708,
+ "observedDomContentLoadedTs": 475554370,
+ "observedCumulativeLayoutShift": 0.008712645848592122,
+ "observedCumulativeLayoutShiftMainFrame": 0.008712645848592122,
+ "observedTotalCumulativeLayoutShift": 0.008712645848592122,
+ "observedFirstVisualChange": 18701,
+ "observedFirstVisualChangeTs": 475547275,
+ "observedLastVisualChange": 21134,
+ "observedLastVisualChangeTs": 477980275,
+ "observedSpeedIndex": 19091,
+ "observedSpeedIndexTs": 475936962
},
{
"lcpInvalidated": false
@@ -19577,23 +19362,23 @@
"type": "debugdata",
"items": [
{
- "numRequests": 60,
+ "numRequests": 59,
"numScripts": 25,
"numStylesheets": 9,
- "numFonts": 5,
- "numTasks": 1055,
- "numTasksOver10ms": 5,
+ "numFonts": 3,
+ "numTasks": 1166,
+ "numTasksOver10ms": 3,
"numTasksOver25ms": 1,
"numTasksOver50ms": 1,
- "numTasksOver100ms": 0,
+ "numTasksOver100ms": 1,
"numTasksOver500ms": 0,
- "rtt": 1.915,
- "throughput": 6128141.717190515,
- "maxRtt": 158.39399999999998,
- "maxServerLatency": 416.5429999999999,
- "totalByteWeight": 1084671,
- "totalTaskTime": 397.0859999999988,
- "mainDocumentTransferSize": 147446
+ "rtt": 2.171000000000001,
+ "throughput": 382674.43454012915,
+ "maxRtt": 113.464,
+ "maxServerLatency": 14240.325,
+ "totalByteWeight": 982864,
+ "totalTaskTime": 320.1680000000001,
+ "mainDocumentTransferSize": 154147
}
]
}
@@ -19633,11 +19418,12 @@
},
{
"slug": "pc",
- "mention": null,
- "maxScore": 0,
- "score": 0,
+ "mention": "Confidentialité",
+ "maxScore": 4,
+ "score": 4,
"missingWords": [],
- "missingTrackers": []
+ "missingTrackers": [],
+ "declarationUrl": "https://preimpactco2.osc-fr1.scalingo.io/politique-de-confidentialite"
}
],
"betagouv": {
@@ -19711,15 +19497,15 @@
"width": 1920,
"height": 1080,
"url": "https://preimpactco2.osc-fr1.scalingo.io",
- "size": 3022.201,
- "nodes": 385,
- "requests": 51,
+ "size": 3461.782,
+ "nodes": 395,
+ "requests": 64,
"grade": "C",
- "score": 61,
- "ges": 1.78,
- "water": 2.67,
+ "score": 56,
+ "ges": 1.88,
+ "water": 2.82,
"ecoindex_version": "5.4.2",
- "date": "2025-01-26 02:08:37.561321",
+ "date": "2025-03-02 02:01:45.470400",
"page_type": null
}
],
@@ -19728,12 +19514,14 @@
"detected": false
},
"summary": {
- "404": "A+",
"httpGrade": "B+",
- "apdex": 0.955,
- "apdexGrade": "E",
- "uptime": 99.772,
+ "apdex": 0.844,
+ "apdexGrade": "F",
+ "uptime": 100,
"uptimeGrade": "A",
+ "nmapGrade": "A",
+ "nmapOpenPortsCount": 2,
+ "nmapOpenPortsGrade": "A",
"dependabotGrade": "A",
"dependabotCount": 0,
"testsslExpireSoon": false,
@@ -19743,15 +19531,15 @@
"cookiesCount": null,
"trackersGrade": null,
"trackersCount": null,
- "zapCount": 8,
+ "zapCount": 9,
"zapGrade": "D",
- "lighthouse_performance": 0.68,
- "lighthouse_performanceGrade": "B",
+ "lighthouse_performance": 0.45,
+ "lighthouse_performanceGrade": "D",
"lighthouse_accessibility": 1,
"lighthouse_accessibilityGrade": "A",
"lighthouse_best-practices": 1,
"lighthouse_best-practicesGrade": "A",
- "lighthouse_seo": 1,
+ "lighthouse_seo": 0.92,
"lighthouse_seoGrade": "A",
"lighthouse_pwa": 0.3,
"lighthouse_pwaGrade": "E",
@@ -19760,13 +19548,13 @@
"budgetPageGrade": "A",
"declaration-a11y": "C",
"declaration-rgpd-ml": "A",
- "declaration-rgpd-pc": "F",
+ "declaration-rgpd-pc": "A",
"ecoindexGrade": "C",
"dsfrGrade": "F"
}
},
{
- "404": null,
+ "404": [],
"url": "https://nosgestesclimat.fr",
"category": "startup",
"betaId": "nosgestesclimat",
@@ -19780,186 +19568,148 @@
"incubateur-ademe/nosgestesclimat-server"
],
"http": {
- "url": "https://nosgestesclimat.fr",
- "algorithm_version": 3,
- "end_time": "Sun, 20 Oct 2024 02:24:09 GMT",
- "grade": "C",
- "hidden": false,
- "likelihood_indicator": "MEDIUM",
- "response_headers": {
- "Age": "0",
- "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate",
- "Content-Encoding": "gzip",
- "Content-Type": "text/html; charset=utf-8",
- "Date": "Sun, 20 Oct 2024 02:24:06 GMT",
- "Link": "; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\"",
- "Server": "Vercel",
- "Strict-Transport-Security": "max-age=63072000",
- "Transfer-Encoding": "chunked",
- "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch",
- "X-Matched-Path": "/",
- "X-Next-I18n-Router-Locale": "fr",
- "X-Powered-By": "Next.js",
- "X-Vercel-Cache": "MISS",
- "X-Vercel-Id": "pdx1::cdg1::sb46k-1729391045919-9ad45a28f6c9"
- },
- "scan_id": 57047874,
- "score": 50,
- "start_time": "Sun, 20 Oct 2024 02:24:04 GMT",
- "state": "FINISHED",
- "status_code": 200,
- "tests_failed": 3,
- "tests_passed": 7,
- "tests_quantity": 10,
- "details": {
+ "scan": {
+ "algorithmVersion": 4,
+ "grade": "C",
+ "error": null,
+ "score": 50,
+ "statusCode": 200,
+ "testsFailed": 3,
+ "testsPassed": 7,
+ "testsQuantity": 10,
+ "responseHeaders": {
+ "age": "0",
+ "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate",
+ "content-type": "text/html; charset=utf-8",
+ "date": "Sun, 02 Mar 2025 02:05:56 GMT",
+ "link": "; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\"",
+ "server": "Vercel",
+ "strict-transport-security": "max-age=63072000",
+ "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch",
+ "x-matched-path": "/",
+ "x-next-i18n-router-locale": "fr",
+ "x-powered-by": "Next.js",
+ "x-vercel-cache": "MISS",
+ "x-vercel-id": "cle1::cdg1::jb9wx-1740881156466-3f91b0d3f887",
+ "connection": "close",
+ "transfer-encoding": "chunked"
+ }
+ },
+ "tests": {
"content-security-policy": {
"expectation": "csp-implemented-with-no-unsafe",
- "name": "content-security-policy",
- "output": {
- "data": null,
- "http": false,
- "meta": false,
- "numPolicies": 0,
- "policy": null
- },
"pass": false,
"result": "csp-not-implemented",
- "score_description": "Content Security Policy (CSP) header not implemented",
- "score_modifier": -25
+ "scoreModifier": -25,
+ "data": null,
+ "http": false,
+ "meta": false,
+ "policy": null,
+ "numPolicies": 0
},
"cookies": {
"expectation": "cookies-secure-with-httponly-sessions",
- "name": "cookies",
- "output": {
- "data": null,
- "sameSite": null
- },
"pass": true,
"result": "cookies-not-found",
- "score_description": "No cookies detected",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "sameSite": false
},
"cross-origin-resource-sharing": {
"expectation": "cross-origin-resource-sharing-not-implemented",
- "name": "cross-origin-resource-sharing",
- "output": {
- "data": {
- "acao": null,
- "clientaccesspolicy": null,
- "crossdomain": null
- }
- },
"pass": true,
"result": "cross-origin-resource-sharing-not-implemented",
- "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null
},
"redirection": {
"expectation": "redirection-to-https",
- "name": "redirection",
- "output": {
- "destination": "https://nosgestesclimat.fr/",
- "redirects": true,
- "route": [
- "http://nosgestesclimat.fr/",
- "https://nosgestesclimat.fr/"
- ],
- "status_code": 200
- },
"pass": true,
"result": "redirection-to-https",
- "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "destination": "https://nosgestesclimat.fr/",
+ "redirects": true,
+ "route": [
+ "http://nosgestesclimat.fr/",
+ "https://nosgestesclimat.fr/"
+ ],
+ "statusCode": 200
},
"referrer-policy": {
"expectation": "referrer-policy-private",
- "name": "referrer-policy",
- "output": {
- "data": null,
- "http": false,
- "meta": false
- },
"pass": true,
"result": "referrer-policy-not-implemented",
- "score_description": "Referrer-Policy header not implemented",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
},
"strict-transport-security": {
"expectation": "hsts-implemented-max-age-at-least-six-months",
- "name": "strict-transport-security",
- "output": {
- "data": "max-age=63072000",
- "includeSubDomains": false,
- "max-age": 63072000,
- "preload": false,
- "preloaded": false
- },
"pass": true,
"result": "hsts-implemented-max-age-at-least-six-months",
- "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "max-age=63072000",
+ "includeSubDomains": false,
+ "maxAge": 63072000,
+ "preload": false,
+ "preloaded": false
},
"subresource-integrity": {
"expectation": "sri-implemented-and-external-scripts-loaded-securely",
- "name": "subresource-integrity",
- "output": {
- "data": {}
- },
"pass": true,
"result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin",
- "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": {}
},
"x-content-type-options": {
"expectation": "x-content-type-options-nosniff",
- "name": "x-content-type-options",
- "output": {
- "data": null
- },
"pass": false,
"result": "x-content-type-options-not-implemented",
- "score_description": "X-Content-Type-Options header not implemented",
- "score_modifier": -5
+ "scoreModifier": -5,
+ "data": null
},
"x-frame-options": {
"expectation": "x-frame-options-sameorigin-or-deny",
- "name": "x-frame-options",
- "output": {
- "data": null
- },
"pass": false,
"result": "x-frame-options-not-implemented",
- "score_description": "X-Frame-Options (XFO) header not implemented",
- "score_modifier": -20
- },
- "x-xss-protection": {
- "expectation": "x-xss-protection-disabled",
- "name": "x-xss-protection",
- "output": {
- "data": null
- },
+ "scoreModifier": -20,
+ "data": null
+ },
+ "cross-origin-resource-policy": {
+ "expectation": "corp-implemented-with-same-site",
"pass": true,
- "result": "x-xss-protection-not-implemented",
- "score_description": "Deprecated X-XSS-Protection header not implemented",
- "score_modifier": 0
+ "result": "corp-not-implemented",
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
}
}
},
"updownio": {
"token": "4rv6",
"url": "https://nosgestesclimat.fr",
+ "type": "https",
"alias": "Nos Gestes Climat",
- "last_status": 200,
"uptime": 100,
"down": false,
"down_since": null,
- "up_since": "2025-01-19T00:17:35Z",
+ "up_since": "2025-02-27T07:45:27Z",
"error": null,
"period": 300,
- "apdex_t": 0.5,
"string_match": "",
"enabled": true,
"published": true,
+ "recipients": [
+ "email:2452151910"
+ ],
+ "last_check_at": "2025-03-02T02:15:48Z",
+ "next_check_at": "2025-03-02T02:20:46Z",
+ "created_at": "2023-11-26T19:58:37Z",
+ "mute_until": null,
+ "last_status": 200,
+ "apdex_t": 0.5,
"disabled_locations": [
"lan",
"mia",
@@ -19968,19 +19718,12 @@
"tok",
"syd"
],
- "recipients": [
- "email:2452151910"
- ],
- "last_check_at": "2025-01-26T02:22:41Z",
- "next_check_at": "2025-01-26T02:27:40Z",
- "created_at": "2023-11-26T19:58:37Z",
- "mute_until": null,
- "favicon_url": "https://nosgestesclimat.fr/favicon.png",
"custom_headers": {},
+ "favicon_url": "https://nosgestesclimat.fr/favicon.png",
"http_verb": "GET/HEAD",
"http_body": "",
"ssl": {
- "tested_at": "2025-01-26T02:07:47Z",
+ "tested_at": "2025-03-02T01:55:54Z",
"expires_at": "2025-04-05T08:05:20Z",
"valid": true,
"error": null
@@ -19988,26 +19731,49 @@
"metrics": {
"apdex": 0.5,
"timings": {
- "redirect": 160,
+ "redirect": 157,
"namelookup": 0,
"connection": 0,
"handshake": 0,
- "response": 900,
- "total": 1060
+ "response": 868,
+ "total": 1026
}
},
"uptimeGrade": "A",
"apdexGrade": "F"
},
- "nmap": null,
+ "nmap": {
+ "host": "nosgestesclimat.fr",
+ "protocol": "tcp",
+ "closed_ports": "998",
+ "open_ports": [
+ {
+ "service": {
+ "name": "http",
+ "product": "Vercel",
+ "id": "80",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "https",
+ "product": "Vercel",
+ "id": "443",
+ "vulnerabilities": []
+ }
+ }
+ ],
+ "grade": "A"
+ },
"dependabot": {
- "totalCount": 43,
+ "totalCount": 47,
"grade": "E",
"repositories": [
{
"url": "https://github.com/incubateur-ademe/nosgestesclimat",
"vulnerabilityAlerts": {
- "totalCount": 6,
+ "totalCount": 7,
"nodes": [
{
"dismissedAt": null,
@@ -20266,6 +20032,35 @@
]
}
}
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-12T09:01:51Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "esbuild"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-67mh-4wv8-2f99"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99"
+ },
+ {
+ "url": "https://github.com/evanw/esbuild/commit/de85afd65edec9ebc44a11e245fd9e9a2e99760d"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-67mh-4wv8-2f99"
+ }
+ ]
+ }
+ }
}
]
},
@@ -20274,7 +20069,7 @@
{
"url": "https://github.com/incubateur-ademe/nosgestesclimat-site-nextjs",
"vulnerabilityAlerts": {
- "totalCount": 16,
+ "totalCount": 19,
"nodes": [
{
"dismissedAt": null,
@@ -20954,6 +20749,99 @@
]
}
}
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-01-28T20:37:49Z",
+ "securityVulnerability": {
+ "severity": "LOW",
+ "package": {
+ "name": "@sentry/nextjs"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-r5w7-f542-q2j4"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/getsentry/sentry-javascript/security/advisories/GHSA-r5w7-f542-q2j4"
+ },
+ {
+ "url": "https://github.com/getsentry/sentry-javascript/issues/14892"
+ },
+ {
+ "url": "https://github.com/getsentry/sentry-javascript/pull/14997"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-r5w7-f542-q2j4"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-01-28T20:38:09Z",
+ "securityVulnerability": {
+ "severity": "LOW",
+ "package": {
+ "name": "@sentry/node"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-r5w7-f542-q2j4"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/getsentry/sentry-javascript/security/advisories/GHSA-r5w7-f542-q2j4"
+ },
+ {
+ "url": "https://github.com/getsentry/sentry-javascript/issues/14892"
+ },
+ {
+ "url": "https://github.com/getsentry/sentry-javascript/pull/14997"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-r5w7-f542-q2j4"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-11T15:18:24Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "esbuild"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-67mh-4wv8-2f99"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99"
+ },
+ {
+ "url": "https://github.com/evanw/esbuild/commit/de85afd65edec9ebc44a11e245fd9e9a2e99760d"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-67mh-4wv8-2f99"
+ }
+ ]
+ }
+ }
}
]
},
@@ -21650,50 +21538,50 @@
},
{
"dismissedAt": null,
- "createdAt": "2024-11-12T16:53:31Z",
+ "createdAt": "2024-11-27T16:37:27Z",
"securityVulnerability": {
- "severity": "CRITICAL",
+ "severity": "HIGH",
"package": {
- "name": "jsonpath-plus"
+ "name": "cross-spawn"
},
"advisory": {
"identifiers": [
{
"type": "GHSA",
- "value": "GHSA-pppg-cpfq-h7wr"
+ "value": "GHSA-3xgq-45jj-v275"
},
{
"type": "CVE",
- "value": "CVE-2024-21534"
+ "value": "CVE-2024-21538"
}
],
"references": [
{
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21534"
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
- "url": "https://github.com/JSONPath-Plus/JSONPath/commit/6b2f1b4c234292c75912b790bf7e2d7339d4ccd3"
+ "url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
- "url": "https://security.snyk.io/vuln/SNYK-JS-JSONPATHPLUS-7945884"
+ "url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
- "url": "https://security.snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-8185019"
+ "url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
- "url": "https://github.com/JSONPath-Plus/JSONPath/issues/226"
+ "url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
},
{
- "url": "https://github.com/JSONPath-Plus/JSONPath/commit/b70aa713553caf838a63bac923195a5bc541fd72"
+ "url": "https://github.com/moxystudio/node-cross-spawn/issues/165"
},
{
- "url": "https://github.com/JSONPath-Plus/JSONPath/issues/226#issuecomment-2424230316"
+ "url": "https://github.com/moxystudio/node-cross-spawn/commit/d35c865b877d2f9ded7c1ed87521c2fdb689c8dd"
},
{
- "url": "https://github.com/JSONPath-Plus/JSONPath/compare/v9.0.0...v10.1.0"
+ "url": "https://security.snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-8366349"
},
{
- "url": "https://github.com/advisories/GHSA-pppg-cpfq-h7wr"
+ "url": "https://github.com/advisories/GHSA-3xgq-45jj-v275"
}
]
}
@@ -21701,50 +21589,38 @@
},
{
"dismissedAt": null,
- "createdAt": "2024-11-27T16:37:27Z",
+ "createdAt": "2024-12-12T20:47:10Z",
"securityVulnerability": {
- "severity": "HIGH",
+ "severity": "MODERATE",
"package": {
- "name": "cross-spawn"
+ "name": "nanoid"
},
"advisory": {
"identifiers": [
{
"type": "GHSA",
- "value": "GHSA-3xgq-45jj-v275"
+ "value": "GHSA-mwcw-c2x4-8c55"
},
{
"type": "CVE",
- "value": "CVE-2024-21538"
+ "value": "CVE-2024-55565"
}
],
"references": [
{
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
- },
- {
- "url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
- },
- {
- "url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
- },
- {
- "url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
- },
- {
- "url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-55565"
},
{
- "url": "https://github.com/moxystudio/node-cross-spawn/issues/165"
+ "url": "https://github.com/ai/nanoid/pull/510"
},
{
- "url": "https://github.com/moxystudio/node-cross-spawn/commit/d35c865b877d2f9ded7c1ed87521c2fdb689c8dd"
+ "url": "https://github.com/ai/nanoid/compare/3.3.7...3.3.8"
},
{
- "url": "https://security.snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-8366349"
+ "url": "https://github.com/ai/nanoid/releases/tag/5.0.9"
},
{
- "url": "https://github.com/advisories/GHSA-3xgq-45jj-v275"
+ "url": "https://github.com/advisories/GHSA-mwcw-c2x4-8c55"
}
]
}
@@ -21752,53 +21628,41 @@
},
{
"dismissedAt": null,
- "createdAt": "2024-12-04T23:53:30Z",
+ "createdAt": "2024-12-17T09:31:05Z",
"securityVulnerability": {
"severity": "HIGH",
"package": {
- "name": "mongoose"
+ "name": "path-to-regexp"
},
"advisory": {
"identifiers": [
{
"type": "GHSA",
- "value": "GHSA-m7xq-9374-9rvx"
+ "value": "GHSA-rhx6-c78j-4q9w"
},
{
"type": "CVE",
- "value": "CVE-2024-53900"
+ "value": "CVE-2024-52798"
}
],
"references": [
{
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-53900"
- },
- {
- "url": "https://github.com/Automattic/mongoose/commit/c9e86bff7eef477da75a29af62a06d41a835a156"
- },
- {
- "url": "https://github.com/Automattic/mongoose/blob/master/CHANGELOG.md"
- },
- {
- "url": "https://github.com/Automattic/mongoose/releases"
- },
- {
- "url": "https://www.npmjs.com/package/mongoose?activeTab=versions"
+ "url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-rhx6-c78j-4q9w"
},
{
- "url": "https://github.com/Automattic/mongoose/commit/33679bcf8ca43d74e3e8ecd4cc224826772d805b"
+ "url": "https://blakeembrey.com/posts/2024-09-web-redos"
},
{
- "url": "https://github.com/Automattic/mongoose/compare/6.13.4...6.13.5"
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52798"
},
{
- "url": "https://github.com/Automattic/mongoose/compare/7.8.2...7.8.3"
+ "url": "https://github.com/pillarjs/path-to-regexp/commit/f01c26a013b1889f0c217c643964513acf17f6a4"
},
{
- "url": "https://github.com/Automattic/mongoose/compare/8.8.2...8.8.3"
+ "url": "https://security.netapp.com/advisory/ntap-20250124-0002"
},
{
- "url": "https://github.com/advisories/GHSA-m7xq-9374-9rvx"
+ "url": "https://github.com/advisories/GHSA-rhx6-c78j-4q9w"
}
]
}
@@ -21806,38 +21670,31 @@
},
{
"dismissedAt": null,
- "createdAt": "2024-12-12T20:47:10Z",
+ "createdAt": "2025-01-28T20:40:24Z",
"securityVulnerability": {
- "severity": "MODERATE",
+ "severity": "LOW",
"package": {
- "name": "nanoid"
+ "name": "@sentry/node"
},
"advisory": {
"identifiers": [
{
"type": "GHSA",
- "value": "GHSA-mwcw-c2x4-8c55"
- },
- {
- "type": "CVE",
- "value": "CVE-2024-55565"
+ "value": "GHSA-r5w7-f542-q2j4"
}
],
"references": [
{
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-55565"
+ "url": "https://github.com/getsentry/sentry-javascript/security/advisories/GHSA-r5w7-f542-q2j4"
},
{
- "url": "https://github.com/ai/nanoid/pull/510"
- },
- {
- "url": "https://github.com/ai/nanoid/compare/3.3.7...3.3.8"
+ "url": "https://github.com/getsentry/sentry-javascript/issues/14892"
},
{
- "url": "https://github.com/ai/nanoid/releases/tag/5.0.9"
+ "url": "https://github.com/getsentry/sentry-javascript/pull/14997"
},
{
- "url": "https://github.com/advisories/GHSA-mwcw-c2x4-8c55"
+ "url": "https://github.com/advisories/GHSA-r5w7-f542-q2j4"
}
]
}
@@ -21845,41 +21702,56 @@
},
{
"dismissedAt": null,
- "createdAt": "2024-12-17T09:31:05Z",
+ "createdAt": "2025-02-06T19:44:10Z",
"securityVulnerability": {
- "severity": "HIGH",
+ "severity": "CRITICAL",
"package": {
- "name": "path-to-regexp"
+ "name": "jsonpath-plus"
},
"advisory": {
"identifiers": [
{
"type": "GHSA",
- "value": "GHSA-rhx6-c78j-4q9w"
+ "value": "GHSA-pppg-cpfq-h7wr"
},
{
"type": "CVE",
- "value": "CVE-2024-52798"
+ "value": "CVE-2024-21534"
}
],
"references": [
{
- "url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-rhx6-c78j-4q9w"
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21534"
},
{
- "url": "https://blakeembrey.com/posts/2024-09-web-redos"
+ "url": "https://github.com/JSONPath-Plus/JSONPath/commit/6b2f1b4c234292c75912b790bf7e2d7339d4ccd3"
},
{
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52798"
+ "url": "https://security.snyk.io/vuln/SNYK-JS-JSONPATHPLUS-7945884"
},
{
- "url": "https://github.com/pillarjs/path-to-regexp/commit/f01c26a013b1889f0c217c643964513acf17f6a4"
+ "url": "https://security.snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-8185019"
},
{
- "url": "https://security.netapp.com/advisory/ntap-20250124-0002"
+ "url": "https://github.com/JSONPath-Plus/JSONPath/issues/226"
},
{
- "url": "https://github.com/advisories/GHSA-rhx6-c78j-4q9w"
+ "url": "https://github.com/JSONPath-Plus/JSONPath/commit/b70aa713553caf838a63bac923195a5bc541fd72"
+ },
+ {
+ "url": "https://github.com/JSONPath-Plus/JSONPath/issues/226#issuecomment-2424230316"
+ },
+ {
+ "url": "https://github.com/JSONPath-Plus/JSONPath/compare/v9.0.0...v10.1.0"
+ },
+ {
+ "url": "https://github.com/JSONPath-Plus/JSONPath/pull/233"
+ },
+ {
+ "url": "https://github.com/JSONPath-Plus/JSONPath/commit/73ad72e5ee788d8287dea6e8283a3f16f63c9eb8"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-pppg-cpfq-h7wr"
}
]
}
@@ -21887,59 +21759,44 @@
},
{
"dismissedAt": null,
- "createdAt": "2025-01-18T00:41:40Z",
+ "createdAt": "2025-02-18T20:05:20Z",
"securityVulnerability": {
- "severity": "CRITICAL",
+ "severity": "HIGH",
"package": {
- "name": "mongoose"
+ "name": "jsonpath-plus"
},
"advisory": {
"identifiers": [
{
"type": "GHSA",
- "value": "GHSA-vg7j-7cwx-8wgw"
+ "value": "GHSA-hw8r-x6gr-5gjp"
},
{
"type": "CVE",
- "value": "CVE-2025-23061"
+ "value": "CVE-2025-1302"
}
],
"references": [
{
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-23061"
- },
- {
- "url": "https://github.com/Automattic/mongoose/commit/64a9f9706f2428c49e0cfb8e223065acc645f7bc"
- },
- {
- "url": "https://github.com/Automattic/mongoose/blob/master/CHANGELOG.md"
- },
- {
- "url": "https://github.com/Automattic/mongoose/releases/tag/8.9.5"
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-1302"
},
{
- "url": "https://www.npmjs.com/package/mongoose?activeTab=versions"
+ "url": "https://github.com/JSONPath-Plus/JSONPath/commit/30942896d27cb8a806b965a5ca9ef9f686be24ee"
},
{
- "url": "https://github.com/Automattic/mongoose/compare/6.13.5...6.13.6"
+ "url": "https://gist.github.com/nickcopi/11ba3cb4fdee6f89e02e6afae8db6456"
},
{
- "url": "https://github.com/Automattic/mongoose/compare/7.8.3...7.8.4"
+ "url": "https://security.snyk.io/vuln/SNYK-JS-JSONPATHPLUS-8719585"
},
{
- "url": "https://github.com/Automattic/mongoose/compare/8.9.4...8.9.5"
- },
- {
- "url": "https://github.com/Automattic/mongoose/releases/tag/6.13.6"
- },
- {
- "url": "https://github.com/Automattic/mongoose/releases/tag/7.8.4"
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21534"
},
{
- "url": "https://github.com/advisories/GHSA-m7xq-9374-9rvx"
+ "url": "https://github.com/JSONPath-Plus/JSONPath/blob/8e4acf8aff5f446aa66323e12394ac5615c3b260/src/Safe-Script.js#L127"
},
{
- "url": "https://github.com/advisories/GHSA-vg7j-7cwx-8wgw"
+ "url": "https://github.com/advisories/GHSA-hw8r-x6gr-5gjp"
}
]
}
@@ -22300,7 +22157,7 @@
"ip": "nosgestesclimat.fr/76.76.21.21",
"port": "443",
"severity": "OK",
- "finding": "69 >= 30 days"
+ "finding": "34 >= 30 days"
},
{
"id": "cert_notBefore",
@@ -22468,7 +22325,7 @@
"ip": "nosgestesclimat.fr/76.76.21.21",
"port": "443",
"severity": "INFO",
- "finding": "1737858349"
+ "finding": "1740881232"
},
{
"id": "HTTP_headerAge",
@@ -23038,7 +22895,7 @@
"ip": "nosgestesclimat.fr/76.76.21.21",
"port": "443",
"severity": "INFO",
- "finding": "44"
+ "finding": "49"
}
],
"thirdparties": {
@@ -23321,7 +23178,7 @@
"zap": {
"@programName": "ZAP",
"@version": "2.16.0",
- "@generated": "Sun, 26 Jan 2025 02:09:52",
+ "@generated": "Sun, 2 Mar 2025 02:05:10",
"site": [
{
"@name": "https://nosgestesclimat.fr",
@@ -23329,6 +23186,13 @@
"@port": "443",
"@ssl": "true",
"alerts": [
+ {
+ "name": "Vulnerable JS Library",
+ "riskcode": "3",
+ "confidence": "2",
+ "riskdesc": "High (Medium)",
+ "desc": "The identified library nextjs, version 14.2.7 is vulnerable.
"
+ },
{
"name": "Content Security Policy (CSP) Header Not Set",
"riskcode": "2",
@@ -23357,6 +23221,13 @@
"riskdesc": "Medium (High)",
"desc": "The integrity attribute is missing on a script or link tag served by an external server. The integrity tag prevents an attacker who have gained access to this server from injecting a malicious content.
"
},
+ {
+ "name": "Application Error Disclosure",
+ "riskcode": "1",
+ "confidence": "2",
+ "riskdesc": "Low (Medium)",
+ "desc": "This page contains an error/warning message that may disclose sensitive information like the location of the file that produced the unhandled exception. This information can be used to launch further attacks against the web application. The alert could be a false positive if the error message is found inside a documentation page.
"
+ },
{
"name": "Big Redirect Detected (Potential Sensitive Information Leak)",
"riskcode": "1",
@@ -23371,6 +23242,13 @@
"riskdesc": "Low (Low)",
"desc": "The full path of files which might be sensitive has been exposed to the client.
"
},
+ {
+ "name": "Information Disclosure - Debug Error Messages",
+ "riskcode": "1",
+ "confidence": "2",
+ "riskdesc": "Low (Medium)",
+ "desc": "The response appeared to contain common error messages returned by platforms such as ASP.NET, and Web-servers such as IIS and Apache. You can configure the list of common debug messages.
"
+ },
{
"name": "Insufficient Site Isolation Against Spectre Vulnerability",
"riskcode": "1",
@@ -23385,6 +23263,13 @@
"riskdesc": "Low (Medium)",
"desc": "Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.
"
},
+ {
+ "name": "Private IP Disclosure",
+ "riskcode": "1",
+ "confidence": "2",
+ "riskdesc": "Low (Medium)",
+ "desc": "A private IP (such as 10.x.x.x, 172.x.x.x, 192.168.x.x) or an Amazon EC2 private hostname (for example, ip-10-0-56-78) has been found in the HTTP response body. This information might be helpful for further attacks targeting internal systems.
"
+ },
{
"name": "Server Leaks Information via \"X-Powered-By\" HTTP Response Header Field(s)",
"riskcode": "1",
@@ -23496,6 +23381,13 @@
"confidence": "2",
"riskdesc": "Informational (Medium)",
"desc": "The response contents are storable by caching components such as proxy servers, but will not be retrieved directly from the cache, without validating the request upstream, in response to similar requests from other users.
"
+ },
+ {
+ "name": "User Controllable HTML Element Attribute (Potential XSS)",
+ "riskcode": "0",
+ "confidence": "1",
+ "riskdesc": "Informational (Low)",
+ "desc": "This check looks at user-supplied input in query string parameters and POST data to identify where certain HTML attribute values might be controlled. This provides hot-spot detection for XSS (cross-site scripting) that will require further review by a security analyst to determine exploitability.
"
}
]
}
@@ -23503,81 +23395,6 @@
"sequences": []
},
"nuclei": [
- {
- "template": "dns/mx-fingerprint.yaml",
- "template-url": "https://templates.nuclei.sh/public/mx-fingerprint",
- "template-id": "mx-fingerprint",
- "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml",
- "info": {
- "name": "MX Record Detection",
- "author": [
- "pdteam"
- ],
- "tags": [
- "dns",
- "mx"
- ],
- "description": "An MX record was detected. MX records direct emails to a mail exchange server.",
- "reference": [
- "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/",
- "https://mxtoolbox.com/"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ]
- }
- },
- "type": "dns",
- "host": "nosgestesclimat.fr.",
- "matched-at": "nosgestesclimat.fr",
- "extracted-results": [
- "50 fb.mail.gandi.net.",
- "10 spool.mail.gandi.net."
- ],
- "timestamp": "2025-01-26T01:56:49.428346354Z",
- "matcher-status": true
- },
- {
- "template": "dns/caa-fingerprint.yaml",
- "template-url": "https://templates.nuclei.sh/public/caa-fingerprint",
- "template-id": "caa-fingerprint",
- "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml",
- "info": {
- "name": "CAA Record",
- "author": [
- "pdteam"
- ],
- "tags": [
- "dns",
- "caa"
- ],
- "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.",
- "reference": [
- "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ]
- }
- },
- "type": "dns",
- "host": "nosgestesclimat.fr.",
- "matched-at": "nosgestesclimat.fr",
- "timestamp": "2025-01-26T01:56:49.428609089Z",
- "matcher-status": true
- },
{
"template": "dns/nameserver-fingerprint.yaml",
"template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint",
@@ -23608,51 +23425,11 @@
"host": "nosgestesclimat.fr.",
"matched-at": "nosgestesclimat.fr",
"extracted-results": [
- "ns-161-b.gandi.net.",
"ns-63-a.gandi.net.",
+ "ns-161-b.gandi.net.",
"ns-200-c.gandi.net."
],
- "timestamp": "2025-01-26T01:56:49.428721642Z",
- "matcher-status": true
- },
- {
- "template": "dns/dmarc-detect.yaml",
- "template-url": "https://templates.nuclei.sh/public/dmarc-detect",
- "template-id": "dmarc-detect",
- "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml",
- "info": {
- "name": "DNS DMARC - Detect",
- "author": [
- "juliosmelo"
- ],
- "tags": [
- "dns",
- "dmarc"
- ],
- "description": "DNS DMARC information was detected.\n",
- "reference": [
- "https://dmarc.org/",
- "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
- }
- },
- "type": "dns",
- "host": "nosgestesclimat.fr.",
- "matched-at": "_dmarc.nosgestesclimat.fr",
- "extracted-results": [
- "\"v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com\""
- ],
- "timestamp": "2025-01-26T01:56:49.523141398Z",
+ "timestamp": "2025-03-02T02:09:44.88948511Z",
"matcher-status": true
},
{
@@ -23682,10 +23459,10 @@
"host": "nosgestesclimat.fr.",
"matched-at": "nosgestesclimat.fr",
"extracted-results": [
- "v=spf1 include:_mailcust.gandi.net ?all\"",
- "v=spf1 include:spf.brevo.com mx ~all\""
+ "v=spf1 include:spf.brevo.com mx ~all\"",
+ "v=spf1 include:_mailcust.gandi.net ?all\""
],
- "timestamp": "2025-01-26T01:56:49.563469903Z",
+ "timestamp": "2025-03-02T02:09:44.890310327Z",
"matcher-status": true
},
{
@@ -23721,128 +23498,129 @@
"host": "nosgestesclimat.fr.",
"matched-at": "nosgestesclimat.fr",
"extracted-results": [
- "\"google-site-verification=x7X9w2HaVRM_cpTV1NqvnDgyAphWQTWY2Io1jigjaVs\"",
- "\"v=spf1 include:_mailcust.gandi.net ?all\"",
+ "\"ahrefs-site-verification_0a8101067703d11ef7f7d42d54a788416189cad016d3b73d2b143e42ea1af6ce\"",
"\"v=spf1 include:spf.brevo.com mx ~all\"",
"\"brevo-code:4dc3300c431ca82c00785768559ea871\"",
+ "\"google-site-verification=x7X9w2HaVRM_cpTV1NqvnDgyAphWQTWY2Io1jigjaVs\"",
"\"google-site-verification=CyO_VhmdbTQjHCYcaFR_VxWHLHZrOtK3iteKhr7VBYE\"",
- "\"ahrefs-site-verification_0a8101067703d11ef7f7d42d54a788416189cad016d3b73d2b143e42ea1af6ce\""
+ "\"v=spf1 include:_mailcust.gandi.net ?all\""
],
- "timestamp": "2025-01-26T01:56:49.563577706Z",
+ "timestamp": "2025-03-02T02:09:44.890418418Z",
"matcher-status": true
},
{
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "template": "dns/mx-fingerprint.yaml",
+ "template-url": "https://templates.nuclei.sh/public/mx-fingerprint",
+ "template-id": "mx-fingerprint",
+ "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml",
"info": {
- "name": "HTTP Missing Security Headers",
+ "name": "MX Record Detection",
"author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
+ "pdteam"
],
"tags": [
- "misconfig",
- "headers",
- "generic"
+ "dns",
+ "mx"
+ ],
+ "description": "An MX record was detected. MX records direct emails to a mail exchange server.",
+ "reference": [
+ "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/",
+ "https://mxtoolbox.com/"
],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
"severity": "info",
"metadata": {
"max-request": 1
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ]
}
},
- "matcher-name": "referrer-policy",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.01930181Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
+ "type": "dns",
+ "host": "nosgestesclimat.fr.",
+ "matched-at": "nosgestesclimat.fr",
+ "extracted-results": [
+ "10 spool.mail.gandi.net.",
+ "50 fb.mail.gandi.net."
+ ],
+ "timestamp": "2025-03-02T02:09:44.994967554Z",
"matcher-status": true
},
{
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "template": "dns/caa-fingerprint.yaml",
+ "template-url": "https://templates.nuclei.sh/public/caa-fingerprint",
+ "template-id": "caa-fingerprint",
+ "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml",
"info": {
- "name": "HTTP Missing Security Headers",
+ "name": "CAA Record",
"author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
+ "pdteam"
],
"tags": [
- "misconfig",
- "headers",
- "generic"
+ "dns",
+ "caa"
+ ],
+ "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.",
+ "reference": [
+ "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record"
],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
"severity": "info",
"metadata": {
"max-request": 1
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ]
}
},
- "matcher-name": "clear-site-data",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.01937617Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
+ "type": "dns",
+ "host": "nosgestesclimat.fr.",
+ "matched-at": "nosgestesclimat.fr",
+ "timestamp": "2025-03-02T02:09:45.028949841Z",
"matcher-status": true
},
{
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "template": "dns/dmarc-detect.yaml",
+ "template-url": "https://templates.nuclei.sh/public/dmarc-detect",
+ "template-id": "dmarc-detect",
+ "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml",
"info": {
- "name": "HTTP Missing Security Headers",
+ "name": "DNS DMARC - Detect",
"author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
+ "juliosmelo"
],
"tags": [
- "misconfig",
- "headers",
- "generic"
+ "dns",
+ "dmarc"
+ ],
+ "description": "DNS DMARC information was detected.\n",
+ "reference": [
+ "https://dmarc.org/",
+ "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f"
],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
"severity": "info",
"metadata": {
"max-request": 1
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "matcher-name": "cross-origin-embedder-policy",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.019391589Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
+ "type": "dns",
+ "host": "nosgestesclimat.fr.",
+ "matched-at": "_dmarc.nosgestesclimat.fr",
+ "extracted-results": [
+ "\"v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com\""
+ ],
+ "timestamp": "2025-03-02T02:09:45.092512374Z",
"matcher-status": true
},
{
@@ -23874,12 +23652,12 @@
"max-request": 1
}
},
- "matcher-name": "content-security-policy",
+ "matcher-name": "x-content-type-options",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en",
+ "matched-at": "https://nosgestesclimat.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.01940822Z",
+ "timestamp": "2025-03-02T02:10:20.976013717Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
"matcher-status": true
},
@@ -23912,12 +23690,12 @@
"max-request": 1
}
},
- "matcher-name": "x-frame-options",
+ "matcher-name": "referrer-policy",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en",
+ "matched-at": "https://nosgestesclimat.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.019421986Z",
+ "timestamp": "2025-03-02T02:10:20.976061816Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
"matcher-status": true
},
@@ -23950,12 +23728,12 @@
"max-request": 1
}
},
- "matcher-name": "x-permitted-cross-domain-policies",
+ "matcher-name": "clear-site-data",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en",
+ "matched-at": "https://nosgestesclimat.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.019434499Z",
+ "timestamp": "2025-03-02T02:10:20.976078518Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
"matcher-status": true
},
@@ -23988,12 +23766,12 @@
"max-request": 1
}
},
- "matcher-name": "cross-origin-resource-policy",
+ "matcher-name": "cross-origin-embedder-policy",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en",
+ "matched-at": "https://nosgestesclimat.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.019446843Z",
+ "timestamp": "2025-03-02T02:10:20.976093796Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
"matcher-status": true
},
@@ -24029,9 +23807,9 @@
"matcher-name": "permissions-policy",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en",
+ "matched-at": "https://nosgestesclimat.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.019459286Z",
+ "timestamp": "2025-03-02T02:10:20.97610678Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
"matcher-status": true
},
@@ -24064,12 +23842,12 @@
"max-request": 1
}
},
- "matcher-name": "x-content-type-options",
+ "matcher-name": "content-security-policy",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en",
+ "matched-at": "https://nosgestesclimat.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.019470868Z",
+ "timestamp": "2025-03-02T02:10:20.976125085Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
"matcher-status": true
},
@@ -24102,12 +23880,12 @@
"max-request": 1
}
},
- "matcher-name": "cross-origin-opener-policy",
+ "matcher-name": "x-frame-options",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en",
+ "matched-at": "https://nosgestesclimat.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.019483301Z",
+ "timestamp": "2025-03-02T02:10:20.97613858Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
"matcher-status": true
},
@@ -24140,12 +23918,12 @@
"max-request": 1
}
},
- "matcher-name": "content-security-policy",
+ "matcher-name": "x-permitted-cross-domain-policies",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en/",
+ "matched-at": "https://nosgestesclimat.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.023772345Z",
+ "timestamp": "2025-03-02T02:10:20.976150362Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
"matcher-status": true
},
@@ -24178,12 +23956,12 @@
"max-request": 1
}
},
- "matcher-name": "permissions-policy",
+ "matcher-name": "cross-origin-opener-policy",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en/",
+ "matched-at": "https://nosgestesclimat.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.023868134Z",
+ "timestamp": "2025-03-02T02:10:20.976163486Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
"matcher-status": true
},
@@ -24216,12 +23994,12 @@
"max-request": 1
}
},
- "matcher-name": "x-frame-options",
+ "matcher-name": "cross-origin-resource-policy",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en/",
+ "matched-at": "https://nosgestesclimat.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.023887942Z",
+ "timestamp": "2025-03-02T02:10:20.976175719Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
"matcher-status": true
},
@@ -24254,697 +24032,445 @@
"max-request": 1
}
},
- "matcher-name": "x-content-type-options",
+ "matcher-name": "strict-transport-security",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en/",
+ "matched-at": "https://nosgestesclimat.fr",
"ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.023901587Z",
+ "timestamp": "2025-03-02T02:10:20.976187992Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
"matcher-status": true
},
{
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "template": "http/miscellaneous/rdap-whois.yaml",
+ "template-url": "https://templates.nuclei.sh/public/rdap-whois",
+ "template-id": "rdap-whois",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
"info": {
- "name": "HTTP Missing Security Headers",
+ "name": "RDAP WHOIS",
"author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
+ "ricardomaia",
+ "sttlr"
],
"tags": [
- "misconfig",
- "headers",
- "generic"
+ "miscellaneous",
+ "whois",
+ "rdap",
+ "osint",
+ "misc"
+ ],
+ "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
+ "reference": [
+ "https://about.rdap.org/"
],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
"severity": "info",
"metadata": {
- "max-request": 1
+ "max-request": 1,
+ "verified": true
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "matcher-name": "x-permitted-cross-domain-policies",
+ "extractor-name": "registrationDate",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en/",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.023914542Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
+ "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
+ "extracted-results": [
+ "2020-09-15T12:31:12Z"
+ ],
+ "ip": "64.176.191.126",
+ "timestamp": "2025-03-02T02:10:29.180910434Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
"matcher-status": true
},
{
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "template": "http/miscellaneous/rdap-whois.yaml",
+ "template-url": "https://templates.nuclei.sh/public/rdap-whois",
+ "template-id": "rdap-whois",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
"info": {
- "name": "HTTP Missing Security Headers",
+ "name": "RDAP WHOIS",
"author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
+ "ricardomaia",
+ "sttlr"
],
"tags": [
- "misconfig",
- "headers",
- "generic"
+ "miscellaneous",
+ "whois",
+ "rdap",
+ "osint",
+ "misc"
+ ],
+ "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
+ "reference": [
+ "https://about.rdap.org/"
],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
"severity": "info",
"metadata": {
- "max-request": 1
+ "max-request": 1,
+ "verified": true
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "matcher-name": "clear-site-data",
+ "extractor-name": "registrantName",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en/",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.023927196Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
+ "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
+ "extracted-results": [
+ "AGCE L ENVIRON MAITRISE L ENERGIE"
+ ],
+ "ip": "64.176.191.126",
+ "timestamp": "2025-03-02T02:10:29.180976256Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
"matcher-status": true
},
{
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "template": "http/miscellaneous/rdap-whois.yaml",
+ "template-url": "https://templates.nuclei.sh/public/rdap-whois",
+ "template-id": "rdap-whois",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
"info": {
- "name": "HTTP Missing Security Headers",
+ "name": "RDAP WHOIS",
"author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
+ "ricardomaia",
+ "sttlr"
],
"tags": [
- "misconfig",
- "headers",
- "generic"
+ "miscellaneous",
+ "whois",
+ "rdap",
+ "osint",
+ "misc"
+ ],
+ "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
+ "reference": [
+ "https://about.rdap.org/"
],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
"severity": "info",
"metadata": {
- "max-request": 1
+ "max-request": 1,
+ "verified": true
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "matcher-name": "cross-origin-embedder-policy",
+ "extractor-name": "registrantOrg",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en/",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.024828259Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
+ "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
+ "extracted-results": [
+ "AGCE L ENVIRON MAITRISE L ENERGIE"
+ ],
+ "ip": "64.176.191.126",
+ "timestamp": "2025-03-02T02:10:29.180994641Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
"matcher-status": true
},
{
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "template": "http/miscellaneous/rdap-whois.yaml",
+ "template-url": "https://templates.nuclei.sh/public/rdap-whois",
+ "template-id": "rdap-whois",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
"info": {
- "name": "HTTP Missing Security Headers",
+ "name": "RDAP WHOIS",
"author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
+ "ricardomaia",
+ "sttlr"
],
"tags": [
- "misconfig",
- "headers",
- "generic"
+ "miscellaneous",
+ "whois",
+ "rdap",
+ "osint",
+ "misc"
+ ],
+ "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
+ "reference": [
+ "https://about.rdap.org/"
],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
"severity": "info",
"metadata": {
- "max-request": 1
+ "max-request": 1,
+ "verified": true
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "matcher-name": "referrer-policy",
+ "extractor-name": "registrantPhone",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en/",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.025285699Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
+ "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
+ "extracted-results": [
+ "+33.241204120"
+ ],
+ "ip": "64.176.191.126",
+ "timestamp": "2025-03-02T02:10:29.181015359Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
"matcher-status": true
},
{
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "template": "http/miscellaneous/rdap-whois.yaml",
+ "template-url": "https://templates.nuclei.sh/public/rdap-whois",
+ "template-id": "rdap-whois",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
"info": {
- "name": "HTTP Missing Security Headers",
+ "name": "RDAP WHOIS",
"author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
+ "ricardomaia",
+ "sttlr"
],
"tags": [
- "misconfig",
- "headers",
- "generic"
+ "miscellaneous",
+ "whois",
+ "rdap",
+ "osint",
+ "misc"
+ ],
+ "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
+ "reference": [
+ "https://about.rdap.org/"
],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
"severity": "info",
"metadata": {
- "max-request": 1
+ "max-request": 1,
+ "verified": true
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "matcher-name": "cross-origin-opener-policy",
+ "extractor-name": "secureDNS",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en/",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.025309945Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
+ "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
+ "extracted-results": [
+ "false"
+ ],
+ "ip": "64.176.191.126",
+ "timestamp": "2025-03-02T02:10:29.181034515Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
"matcher-status": true
},
{
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "template": "http/miscellaneous/rdap-whois.yaml",
+ "template-url": "https://templates.nuclei.sh/public/rdap-whois",
+ "template-id": "rdap-whois",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
"info": {
- "name": "HTTP Missing Security Headers",
+ "name": "RDAP WHOIS",
"author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
+ "ricardomaia",
+ "sttlr"
],
"tags": [
- "misconfig",
- "headers",
- "generic"
+ "miscellaneous",
+ "whois",
+ "rdap",
+ "osint",
+ "misc"
+ ],
+ "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
+ "reference": [
+ "https://about.rdap.org/"
],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
"severity": "info",
"metadata": {
- "max-request": 1
+ "max-request": 1,
+ "verified": true
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "matcher-name": "cross-origin-resource-policy",
+ "extractor-name": "status",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en/",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.025325064Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
+ "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
+ "extracted-results": [
+ "active"
+ ],
+ "ip": "64.176.191.126",
+ "timestamp": "2025-03-02T02:10:29.181053801Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
"matcher-status": true
},
{
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "template": "http/miscellaneous/rdap-whois.yaml",
+ "template-url": "https://templates.nuclei.sh/public/rdap-whois",
+ "template-id": "rdap-whois",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
"info": {
- "name": "HTTP Missing Security Headers",
+ "name": "RDAP WHOIS",
"author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
+ "ricardomaia",
+ "sttlr"
],
"tags": [
- "misconfig",
- "headers",
- "generic"
+ "miscellaneous",
+ "whois",
+ "rdap",
+ "osint",
+ "misc"
+ ],
+ "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
+ "reference": [
+ "https://about.rdap.org/"
],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
"severity": "info",
"metadata": {
- "max-request": 1
+ "max-request": 1,
+ "verified": true
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "matcher-name": "x-content-type-options",
+ "extractor-name": "lastChangeDate",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.026159011Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
+ "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
+ "extracted-results": [
+ "2024-06-19T11:14:17.623026Z"
+ ],
+ "ip": "64.176.191.126",
+ "timestamp": "2025-03-02T02:10:29.181069661Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
"matcher-status": true
},
{
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "template": "http/miscellaneous/rdap-whois.yaml",
+ "template-url": "https://templates.nuclei.sh/public/rdap-whois",
+ "template-id": "rdap-whois",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
"info": {
- "name": "HTTP Missing Security Headers",
+ "name": "RDAP WHOIS",
"author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
+ "ricardomaia",
+ "sttlr"
],
"tags": [
- "misconfig",
- "headers",
- "generic"
+ "miscellaneous",
+ "whois",
+ "rdap",
+ "osint",
+ "misc"
+ ],
+ "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
+ "reference": [
+ "https://about.rdap.org/"
],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
"severity": "info",
"metadata": {
- "max-request": 1
+ "max-request": 1,
+ "verified": true
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "matcher-name": "x-permitted-cross-domain-policies",
+ "extractor-name": "expirationDate",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.026183848Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
+ "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
+ "extracted-results": [
+ "2025-09-15T12:31:12Z"
+ ],
+ "ip": "64.176.191.126",
+ "timestamp": "2025-03-02T02:10:29.181086192Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
"matcher-status": true
},
{
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "template": "http/miscellaneous/rdap-whois.yaml",
+ "template-url": "https://templates.nuclei.sh/public/rdap-whois",
+ "template-id": "rdap-whois",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
"info": {
- "name": "HTTP Missing Security Headers",
+ "name": "RDAP WHOIS",
"author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
+ "ricardomaia",
+ "sttlr"
],
"tags": [
- "misconfig",
- "headers",
- "generic"
+ "miscellaneous",
+ "whois",
+ "rdap",
+ "osint",
+ "misc"
+ ],
+ "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
+ "reference": [
+ "https://about.rdap.org/"
],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
"severity": "info",
"metadata": {
- "max-request": 1
+ "max-request": 1,
+ "verified": true
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ],
+ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "matcher-name": "referrer-policy",
+ "extractor-name": "registrantEmail",
"type": "http",
"host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.026197974Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
+ "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
+ "extracted-results": [
+ "de563d8a8144b9e4cae99df7c291b33c-36293991@contact.gandi.net"
+ ],
+ "ip": "64.176.191.126",
+ "timestamp": "2025-03-02T02:10:29.181102322Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
"matcher-status": true
},
{
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "template": "http/miscellaneous/rdap-whois.yaml",
+ "template-url": "https://templates.nuclei.sh/public/rdap-whois",
+ "template-id": "rdap-whois",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
"info": {
- "name": "HTTP Missing Security Headers",
- "author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
- ],
- "tags": [
- "misconfig",
- "headers",
- "generic"
- ],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
- "severity": "info",
- "metadata": {
- "max-request": 1
- }
- },
- "matcher-name": "clear-site-data",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.02623297Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
- "matcher-status": true
- },
- {
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
- "info": {
- "name": "HTTP Missing Security Headers",
- "author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
- ],
- "tags": [
- "misconfig",
- "headers",
- "generic"
- ],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
- "severity": "info",
- "metadata": {
- "max-request": 1
- }
- },
- "matcher-name": "cross-origin-opener-policy",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.026245774Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
- "matcher-status": true
- },
- {
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
- "info": {
- "name": "HTTP Missing Security Headers",
- "author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
- ],
- "tags": [
- "misconfig",
- "headers",
- "generic"
- ],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
- "severity": "info",
- "metadata": {
- "max-request": 1
- }
- },
- "matcher-name": "content-security-policy",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.026259169Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
- "matcher-status": true
- },
- {
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
- "info": {
- "name": "HTTP Missing Security Headers",
- "author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
- ],
- "tags": [
- "misconfig",
- "headers",
- "generic"
- ],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
- "severity": "info",
- "metadata": {
- "max-request": 1
- }
- },
- "matcher-name": "permissions-policy",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.026270911Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
- "matcher-status": true
- },
- {
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
- "info": {
- "name": "HTTP Missing Security Headers",
- "author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
- ],
- "tags": [
- "misconfig",
- "headers",
- "generic"
- ],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
- "severity": "info",
- "metadata": {
- "max-request": 1
- }
- },
- "matcher-name": "x-frame-options",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.026283906Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
- "matcher-status": true
- },
- {
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
- "info": {
- "name": "HTTP Missing Security Headers",
- "author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
- ],
- "tags": [
- "misconfig",
- "headers",
- "generic"
- ],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
- "severity": "info",
- "metadata": {
- "max-request": 1
- }
- },
- "matcher-name": "cross-origin-embedder-policy",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.026295237Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
- "matcher-status": true
- },
- {
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
- "info": {
- "name": "HTTP Missing Security Headers",
- "author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
- ],
- "tags": [
- "misconfig",
- "headers",
- "generic"
- ],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
- "severity": "info",
- "metadata": {
- "max-request": 1
- }
- },
- "matcher-name": "cross-origin-resource-policy",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:32.02630709Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
- "matcher-status": true
- },
- {
- "template": "http/technologies/fingerprinthub-web-fingerprints.yaml",
- "template-url": "https://templates.nuclei.sh/public/fingerprinthub-web-fingerprints",
- "template-id": "fingerprinthub-web-fingerprints",
- "template-path": "/home/runner/nuclei-templates/http/technologies/fingerprinthub-web-fingerprints.yaml",
- "info": {
- "name": "FingerprintHub Technology Fingerprint",
- "author": [
- "pdteam",
- "righettod"
- ],
- "tags": [
- "tech"
- ],
- "description": "FingerprintHub Technology Fingerprint tests run in nuclei.",
- "reference": [
- "https://github.com/0x727/fingerprinthub"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ]
- }
- },
- "matcher-name": "microsoft-exchange",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:33.81529336Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'",
- "matcher-status": true
- },
- {
- "template": "http/miscellaneous/robots-txt.yaml",
- "template-url": "https://templates.nuclei.sh/public/robots-txt",
- "template-id": "robots-txt",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt.yaml",
- "info": {
- "name": "robots.txt file",
- "author": [
- "caspergn",
- "thezakman"
- ],
- "tags": [
- "miscellaneous",
- "misc",
- "generic"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1
- }
- },
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://nosgestesclimat.fr/en/robots.txt",
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:57:37.744500334Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr/robots.txt'",
- "matcher-status": true
- },
- {
- "template": "http/miscellaneous/rdap-whois.yaml",
- "template-url": "https://templates.nuclei.sh/public/rdap-whois",
- "template-id": "rdap-whois",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
- "info": {
- "name": "RDAP WHOIS",
+ "name": "RDAP WHOIS",
"author": [
"ricardomaia",
"sttlr"
@@ -24973,15 +24499,18 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "status",
+ "extractor-name": "registrantAddress",
"type": "http",
"host": "https://nosgestesclimat.fr",
"matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
"extracted-results": [
- "active"
+ "20 avenue du Gresille BP 90406",
+ "Angers",
+ "49004",
+ "FR"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:57:38.775924968Z",
+ "timestamp": "2025-03-02T02:10:29.181116017Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
"matcher-status": true
},
@@ -25020,15 +24549,15 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "expirationDate",
+ "extractor-name": "registrantCountry",
"type": "http",
"host": "https://nosgestesclimat.fr",
"matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
"extracted-results": [
- "2025-09-15T12:31:12Z"
+ "FR"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:57:38.7759634Z",
+ "timestamp": "2025-03-02T02:10:29.18113383Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
"matcher-status": true
},
@@ -25067,566 +24596,140 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "registrantOrg",
+ "extractor-name": "nameServers",
"type": "http",
"host": "https://nosgestesclimat.fr",
"matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
"extracted-results": [
- "AGCE L ENVIRON MAITRISE L ENERGIE"
+ "ns-200-c.gandi.net",
+ "ns-63-a.gandi.net",
+ "ns-161-b.gandi.net"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:57:38.775974351Z",
+ "timestamp": "2025-03-02T02:10:29.18114985Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
"matcher-status": true
},
{
- "template": "http/miscellaneous/rdap-whois.yaml",
- "template-url": "https://templates.nuclei.sh/public/rdap-whois",
- "template-id": "rdap-whois",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
+ "template": "ssl/detect-ssl-issuer.yaml",
+ "template-url": "https://templates.nuclei.sh/public/ssl-issuer",
+ "template-id": "ssl-issuer",
+ "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml",
"info": {
- "name": "RDAP WHOIS",
+ "name": "Detect SSL Certificate Issuer",
"author": [
- "ricardomaia",
- "sttlr"
+ "lingtren"
],
"tags": [
- "miscellaneous",
- "whois",
- "rdap",
- "osint",
- "misc"
- ],
- "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
- "reference": [
- "https://about.rdap.org/"
+ "ssl",
+ "tls"
],
+ "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n",
"severity": "info",
"metadata": {
- "max-request": 1,
- "verified": true
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+ "max-request": 1
}
},
- "extractor-name": "registrantEmail",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
+ "type": "ssl",
+ "host": "nosgestesclimat.fr",
+ "matched-at": "nosgestesclimat.fr:443",
"extracted-results": [
- "de563d8a8144b9e4cae99df7c291b33c-36293991@contact.gandi.net"
+ "Let's Encrypt"
],
- "ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:57:38.775984119Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
+ "ip": "76.76.21.21",
+ "timestamp": "2025-03-02T02:15:37.735733921Z",
"matcher-status": true
},
{
- "template": "http/miscellaneous/rdap-whois.yaml",
- "template-url": "https://templates.nuclei.sh/public/rdap-whois",
- "template-id": "rdap-whois",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
+ "template": "ssl/ssl-dns-names.yaml",
+ "template-url": "https://templates.nuclei.sh/public/ssl-dns-names",
+ "template-id": "ssl-dns-names",
+ "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml",
"info": {
- "name": "RDAP WHOIS",
+ "name": "SSL DNS Names",
"author": [
- "ricardomaia",
- "sttlr"
+ "pdteam"
],
"tags": [
- "miscellaneous",
- "whois",
- "rdap",
- "osint",
- "misc"
- ],
- "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
- "reference": [
- "https://about.rdap.org/"
+ "ssl",
+ "tls"
],
+ "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n",
"severity": "info",
"metadata": {
- "max-request": 1,
- "verified": true
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+ "max-request": 1
}
},
- "extractor-name": "nameServers",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
+ "type": "ssl",
+ "host": "nosgestesclimat.fr",
+ "matched-at": "nosgestesclimat.fr:443",
"extracted-results": [
- "ns-200-c.gandi.net",
- "ns-161-b.gandi.net",
- "ns-63-a.gandi.net"
+ "nosgestesclimat.fr"
],
- "ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:57:38.775999969Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
+ "ip": "76.76.21.21",
+ "timestamp": "2025-03-02T02:15:37.735876557Z",
"matcher-status": true
},
{
- "template": "http/miscellaneous/rdap-whois.yaml",
- "template-url": "https://templates.nuclei.sh/public/rdap-whois",
- "template-id": "rdap-whois",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
+ "template": "ssl/tls-version.yaml",
+ "template-url": "https://templates.nuclei.sh/public/tls-version",
+ "template-id": "tls-version",
+ "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml",
"info": {
- "name": "RDAP WHOIS",
+ "name": "TLS Version - Detect",
"author": [
- "ricardomaia",
- "sttlr"
+ "pdteam",
+ "pussycat0x"
],
"tags": [
- "miscellaneous",
- "whois",
- "rdap",
- "osint",
- "misc"
- ],
- "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
- "reference": [
- "https://about.rdap.org/"
+ "ssl",
+ "tls"
],
+ "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n",
"severity": "info",
"metadata": {
- "max-request": 1,
- "verified": true
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+ "max-request": 4
}
},
- "extractor-name": "secureDNS",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
+ "type": "ssl",
+ "host": "nosgestesclimat.fr",
+ "matched-at": "nosgestesclimat.fr:443",
"extracted-results": [
- "false"
+ "tls12"
],
- "ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:57:38.776022802Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
+ "ip": "76.76.21.21",
+ "timestamp": "2025-03-02T02:15:38.55642239Z",
"matcher-status": true
},
{
- "template": "http/miscellaneous/rdap-whois.yaml",
- "template-url": "https://templates.nuclei.sh/public/rdap-whois",
- "template-id": "rdap-whois",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
+ "template": "ssl/tls-version.yaml",
+ "template-url": "https://templates.nuclei.sh/public/tls-version",
+ "template-id": "tls-version",
+ "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml",
"info": {
- "name": "RDAP WHOIS",
+ "name": "TLS Version - Detect",
"author": [
- "ricardomaia",
- "sttlr"
+ "pdteam",
+ "pussycat0x"
],
"tags": [
- "miscellaneous",
- "whois",
- "rdap",
- "osint",
- "misc"
- ],
- "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
- "reference": [
- "https://about.rdap.org/"
+ "ssl",
+ "tls"
],
+ "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n",
"severity": "info",
"metadata": {
- "max-request": 1,
- "verified": true
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+ "max-request": 4
}
},
- "extractor-name": "registrationDate",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
+ "type": "ssl",
+ "host": "nosgestesclimat.fr",
+ "matched-at": "nosgestesclimat.fr:443",
"extracted-results": [
- "2020-09-15T12:31:12Z"
+ "tls13"
],
- "ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:57:38.776041157Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
- "matcher-status": true
- },
- {
- "template": "http/miscellaneous/rdap-whois.yaml",
- "template-url": "https://templates.nuclei.sh/public/rdap-whois",
- "template-id": "rdap-whois",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
- "info": {
- "name": "RDAP WHOIS",
- "author": [
- "ricardomaia",
- "sttlr"
- ],
- "tags": [
- "miscellaneous",
- "whois",
- "rdap",
- "osint",
- "misc"
- ],
- "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
- "reference": [
- "https://about.rdap.org/"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1,
- "verified": true
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
- }
- },
- "extractor-name": "lastChangeDate",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
- "extracted-results": [
- "2024-06-19T11:14:17.623026Z"
- ],
- "ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:57:38.776053841Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
- "matcher-status": true
- },
- {
- "template": "http/miscellaneous/rdap-whois.yaml",
- "template-url": "https://templates.nuclei.sh/public/rdap-whois",
- "template-id": "rdap-whois",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
- "info": {
- "name": "RDAP WHOIS",
- "author": [
- "ricardomaia",
- "sttlr"
- ],
- "tags": [
- "miscellaneous",
- "whois",
- "rdap",
- "osint",
- "misc"
- ],
- "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
- "reference": [
- "https://about.rdap.org/"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1,
- "verified": true
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
- }
- },
- "extractor-name": "registrantName",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
- "extracted-results": [
- "AGCE L ENVIRON MAITRISE L ENERGIE"
- ],
- "ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:57:38.776067065Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
- "matcher-status": true
- },
- {
- "template": "http/miscellaneous/rdap-whois.yaml",
- "template-url": "https://templates.nuclei.sh/public/rdap-whois",
- "template-id": "rdap-whois",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
- "info": {
- "name": "RDAP WHOIS",
- "author": [
- "ricardomaia",
- "sttlr"
- ],
- "tags": [
- "miscellaneous",
- "whois",
- "rdap",
- "osint",
- "misc"
- ],
- "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
- "reference": [
- "https://about.rdap.org/"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1,
- "verified": true
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
- }
- },
- "extractor-name": "registrantPhone",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
- "extracted-results": [
- "+33.241204120"
- ],
- "ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:57:38.776079839Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
- "matcher-status": true
- },
- {
- "template": "http/miscellaneous/rdap-whois.yaml",
- "template-url": "https://templates.nuclei.sh/public/rdap-whois",
- "template-id": "rdap-whois",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
- "info": {
- "name": "RDAP WHOIS",
- "author": [
- "ricardomaia",
- "sttlr"
- ],
- "tags": [
- "miscellaneous",
- "whois",
- "rdap",
- "osint",
- "misc"
- ],
- "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
- "reference": [
- "https://about.rdap.org/"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1,
- "verified": true
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
- }
- },
- "extractor-name": "registrantAddress",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
- "extracted-results": [
- "20 avenue du Gresille BP 90406",
- "Angers",
- "49004",
- "FR"
- ],
- "ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:57:38.776092022Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
- "matcher-status": true
- },
- {
- "template": "http/miscellaneous/rdap-whois.yaml",
- "template-url": "https://templates.nuclei.sh/public/rdap-whois",
- "template-id": "rdap-whois",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml",
- "info": {
- "name": "RDAP WHOIS",
- "author": [
- "ricardomaia",
- "sttlr"
- ],
- "tags": [
- "miscellaneous",
- "whois",
- "rdap",
- "osint",
- "misc"
- ],
- "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n",
- "reference": [
- "https://about.rdap.org/"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1,
- "verified": true
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ],
- "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
- }
- },
- "extractor-name": "registrantCountry",
- "type": "http",
- "host": "https://nosgestesclimat.fr",
- "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr",
- "extracted-results": [
- "FR"
- ],
- "ip": "64.176.191.126",
- "timestamp": "2025-01-26T01:57:38.77610681Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'",
- "matcher-status": true
- },
- {
- "template": "ssl/detect-ssl-issuer.yaml",
- "template-url": "https://templates.nuclei.sh/public/ssl-issuer",
- "template-id": "ssl-issuer",
- "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml",
- "info": {
- "name": "Detect SSL Certificate Issuer",
- "author": [
- "lingtren"
- ],
- "tags": [
- "ssl",
- "tls"
- ],
- "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n",
- "severity": "info",
- "metadata": {
- "max-request": 1
- }
- },
- "type": "ssl",
- "host": "nosgestesclimat.fr",
- "matched-at": "nosgestesclimat.fr:443",
- "extracted-results": [
- "Let's Encrypt"
- ],
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:59:47.844898089Z",
- "matcher-status": true
- },
- {
- "template": "ssl/ssl-dns-names.yaml",
- "template-url": "https://templates.nuclei.sh/public/ssl-dns-names",
- "template-id": "ssl-dns-names",
- "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml",
- "info": {
- "name": "SSL DNS Names",
- "author": [
- "pdteam"
- ],
- "tags": [
- "ssl",
- "tls"
- ],
- "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n",
- "severity": "info",
- "metadata": {
- "max-request": 1
- }
- },
- "type": "ssl",
- "host": "nosgestesclimat.fr",
- "matched-at": "nosgestesclimat.fr:443",
- "extracted-results": [
- "nosgestesclimat.fr"
- ],
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T01:59:47.845028724Z",
- "matcher-status": true
- },
- {
- "template": "ssl/tls-version.yaml",
- "template-url": "https://templates.nuclei.sh/public/tls-version",
- "template-id": "tls-version",
- "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml",
- "info": {
- "name": "TLS Version - Detect",
- "author": [
- "pdteam",
- "pussycat0x"
- ],
- "tags": [
- "ssl",
- "tls"
- ],
- "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n",
- "severity": "info",
- "metadata": {
- "max-request": 4
- }
- },
- "type": "ssl",
- "host": "nosgestesclimat.fr",
- "matched-at": "nosgestesclimat.fr:443",
- "extracted-results": [
- "tls12"
- ],
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T02:00:29.705324454Z",
- "matcher-status": true
- },
- {
- "template": "ssl/tls-version.yaml",
- "template-url": "https://templates.nuclei.sh/public/tls-version",
- "template-id": "tls-version",
- "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml",
- "info": {
- "name": "TLS Version - Detect",
- "author": [
- "pdteam",
- "pussycat0x"
- ],
- "tags": [
- "ssl",
- "tls"
- ],
- "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n",
- "severity": "info",
- "metadata": {
- "max-request": 4
- }
- },
- "type": "ssl",
- "host": "nosgestesclimat.fr",
- "matched-at": "nosgestesclimat.fr:443",
- "extracted-results": [
- "tls13"
- ],
- "ip": "76.76.21.21",
- "timestamp": "2025-01-26T02:00:29.726717539Z",
+ "ip": "76.76.21.21",
+ "timestamp": "2025-03-02T02:15:38.597230099Z",
"matcher-status": true
}
],
@@ -25634,7 +24737,7 @@
{
"requestedUrl": "https://nosgestesclimat.fr/",
"finalUrl": "https://nosgestesclimat.fr/",
- "fetchTime": "2025-01-26T02:25:12.036Z",
+ "fetchTime": "2025-03-02T02:05:25.432Z",
"runWarnings": [],
"categories": {
"performance": {
@@ -25645,7 +24748,7 @@
"snapshot"
],
"id": "performance",
- "score": 0.55
+ "score": 0.54
},
"accessibility": {
"title": "Accessibility",
@@ -25677,7 +24780,7 @@
"snapshot"
],
"id": "seo",
- "score": 0.98
+ "score": 0.96
},
"pwa": {
"title": "PWA",
@@ -25697,53 +24800,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 6420,
+ "numericValue": 9499,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 1208,
- "firstMeaningfulPaint": 1208,
- "largestContentfulPaint": 5708,
- "interactive": 6420,
- "speedIndex": 1799,
- "totalBlockingTime": 832,
- "maxPotentialFID": 474,
- "cumulativeLayoutShift": 0.014529782189263239,
- "cumulativeLayoutShiftMainFrame": 0.014529782189263239,
- "totalCumulativeLayoutShift": 0.014529782189263239,
+ "firstContentfulPaint": 1216,
+ "firstMeaningfulPaint": 1216,
+ "largestContentfulPaint": 6091,
+ "interactive": 9499,
+ "speedIndex": 2532,
+ "totalBlockingTime": 680,
+ "maxPotentialFID": 444,
+ "cumulativeLayoutShift": 0.003793103324042426,
+ "cumulativeLayoutShiftMainFrame": 0.003793103324042426,
+ "totalCumulativeLayoutShift": 0.003793103324042426,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 1971147310,
+ "observedTimeOriginTs": 419865076,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 1971147310,
- "observedFirstPaint": 806,
- "observedFirstPaintTs": 1971953793,
- "observedFirstContentfulPaint": 806,
- "observedFirstContentfulPaintTs": 1971953793,
- "observedFirstContentfulPaintAllFrames": 806,
- "observedFirstContentfulPaintAllFramesTs": 1971953793,
- "observedFirstMeaningfulPaint": 806,
- "observedFirstMeaningfulPaintTs": 1971953793,
- "observedLargestContentfulPaint": 894,
- "observedLargestContentfulPaintTs": 1972041380,
- "observedLargestContentfulPaintAllFrames": 894,
- "observedLargestContentfulPaintAllFramesTs": 1972041380,
- "observedTraceEnd": 5284,
- "observedTraceEndTs": 1976431425,
- "observedLoad": 1070,
- "observedLoadTs": 1972217319,
- "observedDomContentLoaded": 1062,
- "observedDomContentLoadedTs": 1972208973,
- "observedCumulativeLayoutShift": 0.014529782189263239,
- "observedCumulativeLayoutShiftMainFrame": 0.014529782189263239,
- "observedTotalCumulativeLayoutShift": 0.014529782189263239,
- "observedFirstVisualChange": 807,
- "observedFirstVisualChangeTs": 1971954310,
- "observedLastVisualChange": 5256,
- "observedLastVisualChangeTs": 1976403310,
- "observedSpeedIndex": 878,
- "observedSpeedIndexTs": 1972025116
+ "observedNavigationStartTs": 419865076,
+ "observedFirstPaint": 900,
+ "observedFirstPaintTs": 420765182,
+ "observedFirstContentfulPaint": 900,
+ "observedFirstContentfulPaintTs": 420765182,
+ "observedFirstContentfulPaintAllFrames": 900,
+ "observedFirstContentfulPaintAllFramesTs": 420765182,
+ "observedFirstMeaningfulPaint": 900,
+ "observedFirstMeaningfulPaintTs": 420765182,
+ "observedLargestContentfulPaint": 954,
+ "observedLargestContentfulPaintTs": 420819539,
+ "observedLargestContentfulPaintAllFrames": 954,
+ "observedLargestContentfulPaintAllFramesTs": 420819539,
+ "observedTraceEnd": 5035,
+ "observedTraceEndTs": 424899670,
+ "observedLoad": 941,
+ "observedLoadTs": 420806534,
+ "observedDomContentLoaded": 916,
+ "observedDomContentLoadedTs": 420780732,
+ "observedCumulativeLayoutShift": 0.003793103324042426,
+ "observedCumulativeLayoutShiftMainFrame": 0.003793103324042426,
+ "observedTotalCumulativeLayoutShift": 0.003793103324042426,
+ "observedFirstVisualChange": 901,
+ "observedFirstVisualChangeTs": 420766076,
+ "observedLastVisualChange": 1501,
+ "observedLastVisualChangeTs": 421366076,
+ "observedSpeedIndex": 931,
+ "observedSpeedIndexTs": 420796001
},
{
"lcpInvalidated": false
@@ -25761,23 +24864,23 @@
"type": "debugdata",
"items": [
{
- "numRequests": 75,
- "numScripts": 31,
+ "numRequests": 80,
+ "numScripts": 33,
"numStylesheets": 3,
"numFonts": 6,
- "numTasks": 2284,
+ "numTasks": 2420,
"numTasksOver10ms": 8,
- "numTasksOver25ms": 5,
+ "numTasksOver25ms": 4,
"numTasksOver50ms": 3,
"numTasksOver100ms": 1,
"numTasksOver500ms": 0,
- "rtt": 1.8940000000000001,
- "throughput": 37398888.03871961,
- "maxRtt": 83.86099999999999,
- "maxServerLatency": 80.418,
- "totalByteWeight": 1856014,
- "totalTaskTime": 832.963999999999,
- "mainDocumentTransferSize": 37545
+ "rtt": 2.5469999999999997,
+ "throughput": 34400825.13972926,
+ "maxRtt": 115.281,
+ "maxServerLatency": 92.625,
+ "totalByteWeight": 2007990,
+ "totalTaskTime": 774.2410000000083,
+ "mainDocumentTransferSize": 37835
}
]
}
@@ -25787,7 +24890,7 @@
],
"screenshot": true,
"stats": {
- "grade": "A",
+ "grade": "F",
"url": "https://nosgestesclimat.fr",
"uri": "stats"
},
@@ -25797,7 +24900,7 @@
"uri": "incubateur-ademe/nosgestesclimat"
},
"budget_page": {
- "grade": "A",
+ "grade": "F",
"url": "https://nosgestesclimat.fr",
"uri": "budget"
},
@@ -25817,7 +24920,7 @@
},
{
"slug": "pc",
- "mention": "Politique de confidentialité",
+ "mention": "Confidentialité",
"maxScore": 4,
"score": 4,
"missingWords": [],
@@ -25896,15 +24999,15 @@
"width": 1920,
"height": 1080,
"url": "https://nosgestesclimat.fr",
- "size": 3446.742,
- "nodes": 514,
- "requests": 110,
+ "size": 3669.12,
+ "nodes": 502,
+ "requests": 120,
"grade": "D",
- "score": 43,
- "ges": 2.14,
- "water": 3.21,
+ "score": 42,
+ "ges": 2.16,
+ "water": 3.24,
"ecoindex_version": "5.4.2",
- "date": "2025-01-26 02:11:14.306765",
+ "date": "2025-03-02 02:02:33.751607",
"page_type": "website"
}
],
@@ -25913,13 +25016,17 @@
"detected": false
},
"summary": {
+ "404": "A+",
"httpGrade": "C",
"apdex": 0.5,
"apdexGrade": "F",
"uptime": 100,
"uptimeGrade": "A",
+ "nmapGrade": "A",
+ "nmapOpenPortsCount": 2,
+ "nmapOpenPortsGrade": "A",
"dependabotGrade": "E",
- "dependabotCount": 43,
+ "dependabotCount": 47,
"testsslExpireSoon": false,
"testsslExpireDate": "2025-04-05T08:05:00.000Z",
"testsslGrade": "A+",
@@ -25927,21 +25034,21 @@
"cookiesCount": null,
"trackersGrade": null,
"trackersCount": null,
- "zapCount": 11,
- "zapGrade": "D",
- "lighthouse_performance": 0.55,
+ "zapCount": 15,
+ "zapGrade": "F",
+ "lighthouse_performance": 0.54,
"lighthouse_performanceGrade": "C",
"lighthouse_accessibility": 0.88,
"lighthouse_accessibilityGrade": "A",
"lighthouse_best-practices": 1,
"lighthouse_best-practicesGrade": "A",
- "lighthouse_seo": 0.98,
+ "lighthouse_seo": 0.96,
"lighthouse_seoGrade": "A",
"lighthouse_pwa": 0.4,
"lighthouse_pwaGrade": "D",
- "statsGrade": "A",
+ "statsGrade": "F",
"githubRepositoryGrade": "A",
- "budgetPageGrade": "A",
+ "budgetPageGrade": "F",
"declaration-a11y": "B",
"declaration-rgpd-ml": "A",
"declaration-rgpd-pc": "A",
@@ -25956,18 +25063,18 @@
"protocol": "https:",
"slashes": true,
"auth": null,
- "host": "cellar-c2.services.clever-cloud.com",
+ "host": "longuevieauxobjets.ademe.fr",
"port": null,
- "hostname": "cellar-c2.services.clever-cloud.com",
+ "hostname": "longuevieauxobjets.ademe.fr",
"hash": null,
- "search": "?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=VZRD1MJIUAOZ17WFB1AN%2F20250126%2Ffr%2Fs3%2Faws4_request&X-Amz-Date=20250126T022749Z&X-Amz-Expires=3600&X-Amz-SignedHeaders=host&X-Amz-Signature=3bfeeb3c10afff001022fdac216fa25d85a29cbd44a3979a373a80331279f381",
- "query": "X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=VZRD1MJIUAOZ17WFB1AN%2F20250126%2Ffr%2Fs3%2Faws4_request&X-Amz-Date=20250126T022749Z&X-Amz-Expires=3600&X-Amz-SignedHeaders=host&X-Amz-Signature=3bfeeb3c10afff001022fdac216fa25d85a29cbd44a3979a373a80331279f381",
- "pathname": "/qfdmo-cms/documents/Schema_Plurianneul_Accessibilite_LVAO.pdf",
- "path": "/qfdmo-cms/documents/Schema_Plurianneul_Accessibilite_LVAO.pdf?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=VZRD1MJIUAOZ17WFB1AN%2F20250126%2Ffr%2Fs3%2Faws4_request&X-Amz-Date=20250126T022749Z&X-Amz-Expires=3600&X-Amz-SignedHeaders=host&X-Amz-Signature=3bfeeb3c10afff001022fdac216fa25d85a29cbd44a3979a373a80331279f381",
- "href": "https://cellar-c2.services.clever-cloud.com/qfdmo-cms/documents/Schema_Plurianneul_Accessibilite_LVAO.pdf?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=VZRD1MJIUAOZ17WFB1AN%2F20250126%2Ffr%2Fs3%2Faws4_request&X-Amz-Date=20250126T022749Z&X-Amz-Expires=3600&X-Amz-SignedHeaders=host&X-Amz-Signature=3bfeeb3c10afff001022fdac216fa25d85a29cbd44a3979a373a80331279f381"
+ "search": null,
+ "query": null,
+ "pathname": "/cookies/",
+ "path": "/cookies/",
+ "href": "https://longuevieauxobjets.ademe.fr/cookies/"
},
- "link": "https://cellar-c2.services.clever-cloud.com/qfdmo-cms/documents/Schema_Plurianneul_Accessibilite_LVAO.pdf?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=VZRD1MJIUAOZ17WFB1AN%2F20250126%2Ffr%2Fs3%2Faws4_request&X-Amz-Date=20250126T022749Z&X-Amz-Expires=3600&X-Amz-SignedHeaders=host&X-Amz-Signature=3bfeeb3c10afff001022fdac216fa25d85a29cbd44a3979a373a80331279f381",
- "line": "https://cellar-c2.services.clever-cloud.com/qfdmo-cms/documents/Schema_Plurianneul_Accessibilite_LVAO.pdf?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=VZRD1MJIUAOZ17WFB1AN%2F20250126%2Ffr%2Fs3%2Faws4_request&X-Amz-Date=20250126T022749Z&X-Amz-Expires=3600&X-Amz-SignedHeaders=host&X-Amz-Signature=3bfeeb3c10afff001022fdac216fa25d85a29cbd44a3979a373a80331279f381",
+ "link": "https://longuevieauxobjets.ademe.fr/cookies/",
+ "line": "https://longuevieauxobjets.ademe.fr/cookies/",
"broken": true
},
{
@@ -25975,18 +25082,18 @@
"protocol": "https:",
"slashes": true,
"auth": null,
- "host": "longuevieauxobjets.ademe.fr",
+ "host": "cellar-c2.services.clever-cloud.com",
"port": null,
- "hostname": "longuevieauxobjets.ademe.fr",
+ "hostname": "cellar-c2.services.clever-cloud.com",
"hash": null,
- "search": null,
- "query": null,
- "pathname": "/cookies/",
- "path": "/cookies/",
- "href": "https://longuevieauxobjets.ademe.fr/cookies/"
+ "search": "?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=VZRD1MJIUAOZ17WFB1AN%2F20250302%2Ffr%2Fs3%2Faws4_request&X-Amz-Date=20250302T024016Z&X-Amz-Expires=3600&X-Amz-SignedHeaders=host&X-Amz-Signature=5c558940db61f9145c19a6a8d6cd2e34f897669b18bb0ca6b99c4286236c97d8",
+ "query": "X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=VZRD1MJIUAOZ17WFB1AN%2F20250302%2Ffr%2Fs3%2Faws4_request&X-Amz-Date=20250302T024016Z&X-Amz-Expires=3600&X-Amz-SignedHeaders=host&X-Amz-Signature=5c558940db61f9145c19a6a8d6cd2e34f897669b18bb0ca6b99c4286236c97d8",
+ "pathname": "/qfdmo-cms/documents/Schema_Plurianneul_Accessibilite_LVAO.pdf",
+ "path": "/qfdmo-cms/documents/Schema_Plurianneul_Accessibilite_LVAO.pdf?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=VZRD1MJIUAOZ17WFB1AN%2F20250302%2Ffr%2Fs3%2Faws4_request&X-Amz-Date=20250302T024016Z&X-Amz-Expires=3600&X-Amz-SignedHeaders=host&X-Amz-Signature=5c558940db61f9145c19a6a8d6cd2e34f897669b18bb0ca6b99c4286236c97d8",
+ "href": "https://cellar-c2.services.clever-cloud.com/qfdmo-cms/documents/Schema_Plurianneul_Accessibilite_LVAO.pdf?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=VZRD1MJIUAOZ17WFB1AN%2F20250302%2Ffr%2Fs3%2Faws4_request&X-Amz-Date=20250302T024016Z&X-Amz-Expires=3600&X-Amz-SignedHeaders=host&X-Amz-Signature=5c558940db61f9145c19a6a8d6cd2e34f897669b18bb0ca6b99c4286236c97d8"
},
- "link": "https://longuevieauxobjets.ademe.fr/cookies/",
- "line": "https://longuevieauxobjets.ademe.fr/cookies/",
+ "link": "https://cellar-c2.services.clever-cloud.com/qfdmo-cms/documents/Schema_Plurianneul_Accessibilite_LVAO.pdf?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=VZRD1MJIUAOZ17WFB1AN%2F20250302%2Ffr%2Fs3%2Faws4_request&X-Amz-Date=20250302T024016Z&X-Amz-Expires=3600&X-Amz-SignedHeaders=host&X-Amz-Signature=5c558940db61f9145c19a6a8d6cd2e34f897669b18bb0ca6b99c4286236c97d8",
+ "line": "https://cellar-c2.services.clever-cloud.com/qfdmo-cms/documents/Schema_Plurianneul_Accessibilite_LVAO.pdf?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=VZRD1MJIUAOZ17WFB1AN%2F20250302%2Ffr%2Fs3%2Faws4_request&X-Amz-Date=20250302T024016Z&X-Amz-Expires=3600&X-Amz-SignedHeaders=host&X-Amz-Signature=5c558940db61f9145c19a6a8d6cd2e34f897669b18bb0ca6b99c4286236c97d8",
"broken": true
},
{
@@ -26020,182 +25127,144 @@
"incubateur-ademe/quefairedemesobjets"
],
"http": {
- "url": "https://longuevieauxobjets.ademe.fr",
- "algorithm_version": 3,
- "end_time": "Sun, 20 Oct 2024 02:29:58 GMT",
- "grade": "D",
- "hidden": false,
- "likelihood_indicator": "MEDIUM",
- "response_headers": {
- "Connection": "keep-alive",
- "Content-Encoding": "gzip",
- "Content-Language": "fr",
- "Content-Type": "text/html; charset=utf-8",
- "Cross-Origin-Opener-Policy": "same-origin",
- "Date": "Sun, 20 Oct 2024 02:29:57 GMT",
- "Referrer-Policy": "same-origin",
- "Transfer-Encoding": "chunked",
- "Vary": "Accept-Language, Cookie",
- "X-Content-Type-Options": "nosniff",
- "X-Frame-Options": "DENY",
- "X-Request-ID": "a50a1227-7e46-4947-aaab-38896bf2fac4"
- },
- "scan_id": 57047941,
- "score": 35,
- "start_time": "Sun, 20 Oct 2024 02:29:56 GMT",
- "state": "FINISHED",
- "status_code": 200,
- "tests_failed": 3,
- "tests_passed": 7,
- "tests_quantity": 10,
- "details": {
+ "scan": {
+ "algorithmVersion": 4,
+ "grade": "D",
+ "error": null,
+ "score": 35,
+ "statusCode": 200,
+ "testsFailed": 3,
+ "testsPassed": 7,
+ "testsQuantity": 10,
+ "responseHeaders": {
+ "date": "Sun, 02 Mar 2025 02:21:18 GMT",
+ "content-type": "text/html; charset=utf-8",
+ "transfer-encoding": "chunked",
+ "connection": "close",
+ "x-request-id": "c083d5dd-2a70-47e4-9bee-62507f872c2d",
+ "x-frame-options": "DENY",
+ "vary": "Accept-Language, Cookie",
+ "content-language": "fr",
+ "x-content-type-options": "nosniff",
+ "referrer-policy": "same-origin",
+ "cross-origin-opener-policy": "same-origin"
+ }
+ },
+ "tests": {
"content-security-policy": {
"expectation": "csp-implemented-with-no-unsafe",
- "name": "content-security-policy",
- "output": {
- "data": null,
- "http": false,
- "meta": false,
- "numPolicies": 0,
- "policy": null
- },
"pass": false,
"result": "csp-not-implemented",
- "score_description": "Content Security Policy (CSP) header not implemented",
- "score_modifier": -25
+ "scoreModifier": -25,
+ "data": null,
+ "http": false,
+ "meta": false,
+ "policy": null,
+ "numPolicies": 0
},
"cookies": {
"expectation": "cookies-secure-with-httponly-sessions",
- "name": "cookies",
- "output": {
- "data": null,
- "sameSite": null
- },
"pass": true,
"result": "cookies-not-found",
- "score_description": "No cookies detected",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "sameSite": false
},
"cross-origin-resource-sharing": {
"expectation": "cross-origin-resource-sharing-not-implemented",
- "name": "cross-origin-resource-sharing",
- "output": {
- "data": {
- "acao": null,
- "clientaccesspolicy": null,
- "crossdomain": null
- }
- },
"pass": true,
"result": "cross-origin-resource-sharing-not-implemented",
- "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null
},
"redirection": {
"expectation": "redirection-to-https",
- "name": "redirection",
- "output": {
- "destination": "http://longuevieauxobjets.ademe.fr/",
- "redirects": false,
- "route": [
- "http://longuevieauxobjets.ademe.fr/"
- ],
- "status_code": 200
- },
"pass": false,
"result": "redirection-missing",
- "score_description": "Does not redirect to an HTTPS site",
- "score_modifier": -20
+ "scoreModifier": -20,
+ "destination": "http://longuevieauxobjets.ademe.fr/",
+ "redirects": false,
+ "route": [
+ "http://longuevieauxobjets.ademe.fr/"
+ ],
+ "statusCode": 200
},
"referrer-policy": {
"expectation": "referrer-policy-private",
- "name": "referrer-policy",
- "output": {
- "data": "same-origin",
- "http": true,
- "meta": false
- },
"pass": true,
"result": "referrer-policy-private",
- "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"",
- "score_modifier": 5
+ "scoreModifier": 5,
+ "data": "same-origin",
+ "http": true,
+ "meta": false
},
"strict-transport-security": {
"expectation": "hsts-implemented-max-age-at-least-six-months",
- "name": "strict-transport-security",
- "output": {
- "data": null,
- "includeSubDomains": false,
- "max-age": null,
- "preload": false,
- "preloaded": false
- },
"pass": false,
"result": "hsts-not-implemented",
- "score_description": "HTTP Strict Transport Security (HSTS) header not implemented",
- "score_modifier": -20
+ "scoreModifier": -20,
+ "data": null,
+ "includeSubDomains": false,
+ "maxAge": null,
+ "preload": false,
+ "preloaded": false
},
"subresource-integrity": {
"expectation": "sri-implemented-and-external-scripts-loaded-securely",
- "name": "subresource-integrity",
- "output": {
- "data": {}
- },
"pass": true,
"result": "sri-implemented-and-all-scripts-loaded-securely",
- "score_description": "Subresource Integrity (SRI) is implemented and all scripts are loaded from a similar origin",
- "score_modifier": 5
+ "scoreModifier": 5,
+ "data": {}
},
"x-content-type-options": {
"expectation": "x-content-type-options-nosniff",
- "name": "x-content-type-options",
- "output": {
- "data": "nosniff"
- },
"pass": true,
"result": "x-content-type-options-nosniff",
- "score_description": "X-Content-Type-Options header set to \"nosniff\"",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "nosniff"
},
"x-frame-options": {
"expectation": "x-frame-options-sameorigin-or-deny",
- "name": "x-frame-options",
- "output": {
- "data": "DENY"
- },
"pass": true,
"result": "x-frame-options-sameorigin-or-deny",
- "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY",
- "score_modifier": 0
- },
- "x-xss-protection": {
- "expectation": "x-xss-protection-disabled",
- "name": "x-xss-protection",
- "output": {
- "data": null
- },
+ "scoreModifier": 0,
+ "data": "DENY"
+ },
+ "cross-origin-resource-policy": {
+ "expectation": "corp-implemented-with-same-site",
"pass": true,
- "result": "x-xss-protection-not-implemented",
- "score_description": "Deprecated X-XSS-Protection header not implemented",
- "score_modifier": 0
+ "result": "corp-not-implemented",
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
}
}
},
"updownio": {
"token": "u94x",
"url": "https://longuevieauxobjets.ademe.fr",
+ "type": "https",
"alias": "Longue Vie Aux Objets",
- "last_status": 200,
"uptime": 100,
"down": false,
"down_since": null,
- "up_since": "2025-01-16T03:11:49Z",
+ "up_since": "2025-02-25T20:55:50Z",
"error": null,
"period": 300,
- "apdex_t": 0.5,
"string_match": "",
"enabled": true,
"published": true,
+ "recipients": [
+ "email:1558568615",
+ "email:1520458361"
+ ],
+ "last_check_at": "2025-03-02T02:35:19Z",
+ "next_check_at": "2025-03-02T02:40:19Z",
+ "created_at": "2023-11-26T19:59:05Z",
+ "mute_until": null,
+ "last_status": 200,
+ "apdex_t": 0.5,
"disabled_locations": [
"lan",
"mia",
@@ -26204,47 +25273,60 @@
"tok",
"syd"
],
- "recipients": [
- "email:1558568615",
- "email:1520458361"
- ],
- "last_check_at": "2025-01-26T02:36:06Z",
- "next_check_at": "2025-01-26T02:41:04Z",
- "created_at": "2023-11-26T19:59:05Z",
- "mute_until": null,
- "favicon_url": "https://longuevieauxobjets.ademe.fr/static/dsfr/dist/favicon/favicon.ico",
"custom_headers": {},
+ "favicon_url": "https://longuevieauxobjets.ademe.fr/static/dsfr/dist/favicon/favicon.ico",
"http_verb": "GET/HEAD",
"http_body": "",
"ssl": {
- "tested_at": "2025-01-26T02:36:07Z",
- "expires_at": "2025-03-19T12:38:40Z",
+ "tested_at": "2025-03-02T02:30:23Z",
+ "expires_at": "2025-05-18T12:39:40Z",
"valid": true,
"error": null
},
"metrics": {
- "apdex": 0.924,
+ "apdex": 0.92,
"timings": {
"redirect": 0,
- "namelookup": 9,
- "connection": 23,
- "handshake": 29,
- "response": 323,
- "total": 385
+ "namelookup": 7,
+ "connection": 24,
+ "handshake": 31,
+ "response": 337,
+ "total": 400
}
},
"uptimeGrade": "A",
"apdexGrade": "F"
},
- "nmap": null,
+ "nmap": {
+ "host": "longuevieauxobjets.ademe.fr",
+ "protocol": "tcp",
+ "closed_ports": "998",
+ "open_ports": [
+ {
+ "service": {
+ "name": "http",
+ "id": "80",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "https",
+ "id": "443",
+ "vulnerabilities": []
+ }
+ }
+ ],
+ "grade": "A"
+ },
"dependabot": {
- "totalCount": 10,
+ "totalCount": 11,
"grade": "C",
"repositories": [
{
"url": "https://github.com/incubateur-ademe/quefairedemesobjets",
"vulnerabilityAlerts": {
- "totalCount": 10,
+ "totalCount": 11,
"nodes": [
{
"dismissedAt": null,
@@ -26422,6 +25504,9 @@
{
"url": "https://github.com/pallets/werkzeug/releases/tag/3.0.6"
},
+ {
+ "url": "https://security.netapp.com/advisory/ntap-20250131-0005"
+ },
{
"url": "https://github.com/advisories/GHSA-f9vj-2wh5-fj8j"
}
@@ -26509,6 +25594,9 @@
{
"url": "https://github.com/pallets/werkzeug/releases/tag/3.0.6"
},
+ {
+ "url": "https://security.netapp.com/advisory/ntap-20250131-0005"
+ },
{
"url": "https://github.com/advisories/GHSA-f9vj-2wh5-fj8j"
}
@@ -26518,50 +25606,38 @@
},
{
"dismissedAt": null,
- "createdAt": "2025-01-14T22:21:25Z",
+ "createdAt": "2025-01-16T08:22:01Z",
"securityVulnerability": {
"severity": "MODERATE",
"package": {
- "name": "Django"
+ "name": "scikit-learn"
},
"advisory": {
"identifiers": [
{
"type": "GHSA",
- "value": "GHSA-qcgg-j2x8-h9g8"
+ "value": "GHSA-jw8x-6495-233v"
},
{
"type": "CVE",
- "value": "CVE-2024-56374"
+ "value": "CVE-2024-5206"
}
],
"references": [
{
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56374"
- },
- {
- "url": "https://docs.djangoproject.com/en/dev/releases/security"
- },
- {
- "url": "https://groups.google.com/g/django-announce"
- },
- {
- "url": "https://www.djangoproject.com/weblog/2025/jan/14/security-releases"
- },
- {
- "url": "http://www.openwall.com/lists/oss-security/2025/01/14/2"
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-5206"
},
{
- "url": "https://github.com/django/django/commit/ca2be7724e1244a4cb723de40a070f873c6e94bf"
+ "url": "https://github.com/scikit-learn/scikit-learn/commit/70ca21f106b603b611da73012c9ade7cd8e438b8"
},
{
- "url": "https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2025-1.yaml"
+ "url": "https://huntr.com/bounties/14bc0917-a85b-4106-a170-d09d5191517c"
},
{
- "url": "https://lists.debian.org/debian-lts-announce/2025/01/msg00024.html"
+ "url": "https://github.com/pypa/advisory-database/tree/main/vulns/scikit-learn/PYSEC-2024-110.yaml"
},
{
- "url": "https://github.com/advisories/GHSA-qcgg-j2x8-h9g8"
+ "url": "https://github.com/advisories/GHSA-jw8x-6495-233v"
}
]
}
@@ -26569,50 +25645,38 @@
},
{
"dismissedAt": null,
- "createdAt": "2025-01-14T22:21:25Z",
+ "createdAt": "2025-01-16T08:22:01Z",
"securityVulnerability": {
"severity": "MODERATE",
"package": {
- "name": "Django"
+ "name": "scikit-learn"
},
"advisory": {
"identifiers": [
{
"type": "GHSA",
- "value": "GHSA-qcgg-j2x8-h9g8"
+ "value": "GHSA-jw8x-6495-233v"
},
{
"type": "CVE",
- "value": "CVE-2024-56374"
+ "value": "CVE-2024-5206"
}
],
"references": [
{
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56374"
- },
- {
- "url": "https://docs.djangoproject.com/en/dev/releases/security"
- },
- {
- "url": "https://groups.google.com/g/django-announce"
- },
- {
- "url": "https://www.djangoproject.com/weblog/2025/jan/14/security-releases"
- },
- {
- "url": "http://www.openwall.com/lists/oss-security/2025/01/14/2"
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-5206"
},
{
- "url": "https://github.com/django/django/commit/ca2be7724e1244a4cb723de40a070f873c6e94bf"
+ "url": "https://github.com/scikit-learn/scikit-learn/commit/70ca21f106b603b611da73012c9ade7cd8e438b8"
},
{
- "url": "https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2025-1.yaml"
+ "url": "https://huntr.com/bounties/14bc0917-a85b-4106-a170-d09d5191517c"
},
{
- "url": "https://lists.debian.org/debian-lts-announce/2025/01/msg00024.html"
+ "url": "https://github.com/pypa/advisory-database/tree/main/vulns/scikit-learn/PYSEC-2024-110.yaml"
},
{
- "url": "https://github.com/advisories/GHSA-qcgg-j2x8-h9g8"
+ "url": "https://github.com/advisories/GHSA-jw8x-6495-233v"
}
]
}
@@ -26620,38 +25684,50 @@
},
{
"dismissedAt": null,
- "createdAt": "2025-01-16T08:22:01Z",
+ "createdAt": "2025-02-11T18:54:36Z",
"securityVulnerability": {
- "severity": "MODERATE",
+ "severity": "LOW",
"package": {
- "name": "scikit-learn"
+ "name": "cryptography"
},
"advisory": {
"identifiers": [
{
"type": "GHSA",
- "value": "GHSA-jw8x-6495-233v"
+ "value": "GHSA-79v4-65xg-pq4g"
},
{
"type": "CVE",
- "value": "CVE-2024-5206"
+ "value": "CVE-2024-12797"
}
],
"references": [
{
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-5206"
+ "url": "https://github.com/pyca/cryptography/security/advisories/GHSA-79v4-65xg-pq4g"
},
{
- "url": "https://github.com/scikit-learn/scikit-learn/commit/70ca21f106b603b611da73012c9ade7cd8e438b8"
+ "url": "https://openssl-library.org/news/secadv/20250211.txt"
},
{
- "url": "https://huntr.com/bounties/14bc0917-a85b-4106-a170-d09d5191517c"
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-12797"
},
{
- "url": "https://github.com/pypa/advisory-database/tree/main/vulns/scikit-learn/PYSEC-2024-110.yaml"
+ "url": "https://github.com/openssl/openssl/commit/738d4f9fdeaad57660dcba50a619fafced3fd5e9"
},
{
- "url": "https://github.com/advisories/GHSA-jw8x-6495-233v"
+ "url": "https://github.com/openssl/openssl/commit/798779d43494549b611233f92652f0da5328fbe7"
+ },
+ {
+ "url": "https://github.com/openssl/openssl/commit/87ebd203feffcf92ad5889df92f90bb0ee10a699"
+ },
+ {
+ "url": "http://www.openwall.com/lists/oss-security/2025/02/11/3"
+ },
+ {
+ "url": "http://www.openwall.com/lists/oss-security/2025/02/11/4"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-79v4-65xg-pq4g"
}
]
}
@@ -26659,38 +25735,101 @@
},
{
"dismissedAt": null,
- "createdAt": "2025-01-16T08:22:01Z",
+ "createdAt": "2025-02-11T18:54:36Z",
"securityVulnerability": {
- "severity": "MODERATE",
+ "severity": "LOW",
"package": {
- "name": "scikit-learn"
+ "name": "cryptography"
},
"advisory": {
"identifiers": [
{
"type": "GHSA",
- "value": "GHSA-jw8x-6495-233v"
+ "value": "GHSA-79v4-65xg-pq4g"
},
{
"type": "CVE",
- "value": "CVE-2024-5206"
+ "value": "CVE-2024-12797"
}
],
"references": [
{
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-5206"
+ "url": "https://github.com/pyca/cryptography/security/advisories/GHSA-79v4-65xg-pq4g"
},
{
- "url": "https://github.com/scikit-learn/scikit-learn/commit/70ca21f106b603b611da73012c9ade7cd8e438b8"
+ "url": "https://openssl-library.org/news/secadv/20250211.txt"
},
{
- "url": "https://huntr.com/bounties/14bc0917-a85b-4106-a170-d09d5191517c"
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-12797"
},
{
- "url": "https://github.com/pypa/advisory-database/tree/main/vulns/scikit-learn/PYSEC-2024-110.yaml"
+ "url": "https://github.com/openssl/openssl/commit/738d4f9fdeaad57660dcba50a619fafced3fd5e9"
},
{
- "url": "https://github.com/advisories/GHSA-jw8x-6495-233v"
+ "url": "https://github.com/openssl/openssl/commit/798779d43494549b611233f92652f0da5328fbe7"
+ },
+ {
+ "url": "https://github.com/openssl/openssl/commit/87ebd203feffcf92ad5889df92f90bb0ee10a699"
+ },
+ {
+ "url": "http://www.openwall.com/lists/oss-security/2025/02/11/3"
+ },
+ {
+ "url": "http://www.openwall.com/lists/oss-security/2025/02/11/4"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-79v4-65xg-pq4g"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-11T18:54:36Z",
+ "securityVulnerability": {
+ "severity": "LOW",
+ "package": {
+ "name": "cryptography"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-79v4-65xg-pq4g"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2024-12797"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/pyca/cryptography/security/advisories/GHSA-79v4-65xg-pq4g"
+ },
+ {
+ "url": "https://openssl-library.org/news/secadv/20250211.txt"
+ },
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-12797"
+ },
+ {
+ "url": "https://github.com/openssl/openssl/commit/738d4f9fdeaad57660dcba50a619fafced3fd5e9"
+ },
+ {
+ "url": "https://github.com/openssl/openssl/commit/798779d43494549b611233f92652f0da5328fbe7"
+ },
+ {
+ "url": "https://github.com/openssl/openssl/commit/87ebd203feffcf92ad5889df92f90bb0ee10a699"
+ },
+ {
+ "url": "http://www.openwall.com/lists/oss-security/2025/02/11/3"
+ },
+ {
+ "url": "http://www.openwall.com/lists/oss-security/2025/02/11/4"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-79v4-65xg-pq4g"
}
]
}
@@ -26703,67 +25842,13 @@
]
},
"codescan": {
- "totalCount": 1,
- "grade": "D",
+ "totalCount": 0,
+ "grade": "A",
"repositories": [
{
"url": "https://github.com/incubateur-ademe/quefairedemesobjets",
- "grade": "D",
- "alerts": [
- {
- "number": 21,
- "created_at": "2024-11-14T09:49:13Z",
- "updated_at": "2024-11-19T20:49:10Z",
- "url": "https://api.github.com/repos/incubateur-ademe/quefairedemesobjets/code-scanning/alerts/21",
- "html_url": "https://github.com/incubateur-ademe/quefairedemesobjets/security/code-scanning/21",
- "state": "open",
- "fixed_at": null,
- "dismissed_by": null,
- "dismissed_at": null,
- "dismissed_reason": null,
- "dismissed_comment": null,
- "rule": {
- "id": "js/missing-origin-check",
- "severity": "warning",
- "description": "Missing origin verification in `postMessage` handler",
- "name": "js/missing-origin-check",
- "tags": [
- "correctness",
- "external/cwe/cwe-020",
- "external/cwe/cwe-940",
- "security"
- ],
- "full_description": "Missing origin verification in a `postMessage` handler allows any windows to send arbitrary data to the handler.",
- "help": "# Missing origin verification in `postMessage` handler\nThe `\"message\"` event is used to send messages between windows. An untrusted window can send a message to a trusted window, and it is up to the receiver to verify the legitimacy of the message. One way of performing that verification is to check the `origin` of the message ensure that it originates from a trusted window.\n\n\n## Recommendation\nAlways verify the origin of incoming messages.\n\n\n## Example\nThe example below uses a received message to execute some code. However, the origin of the message is not checked, so it might be possible for an attacker to execute arbitrary code.\n\n\n```javascript\nfunction postMessageHandler(event) {\n let origin = event.origin.toLowerCase();\n\n console.log(origin)\n // BAD: the origin property is not checked\n eval(event.data);\n}\n\nwindow.addEventListener('message', postMessageHandler, false);\n\n```\nThe example is fixed below, where the origin is checked to be trusted. It is therefore not possible for a malicious user to perform an attack using an untrusted origin.\n\n\n```javascript\nfunction postMessageHandler(event) {\n console.log(event.origin)\n // GOOD: the origin property is checked\n if (event.origin === 'https://www.example.com') {\n // do something\n }\n}\n\nwindow.addEventListener('message', postMessageHandler, false);\n```\n\n## References\n* [Window.postMessage()](https://developer.mozilla.org/en-US/docs/Web/API/Window/postMessage).\n* [Web message manipulation](https://portswigger.net/web-security/dom-based/web-message-manipulation).\n* [The pitfalls of postMessage](https://labs.detectify.com/2016/12/08/the-pitfalls-of-postmessage/).\n* Common Weakness Enumeration: [CWE-20](https://cwe.mitre.org/data/definitions/20.html).\n* Common Weakness Enumeration: [CWE-940](https://cwe.mitre.org/data/definitions/940.html).\n",
- "security_severity_level": "medium"
- },
- "tool": {
- "name": "CodeQL",
- "guid": null,
- "version": "2.20.2"
- },
- "most_recent_instance": {
- "ref": "refs/heads/main",
- "analysis_key": "dynamic/github-code-scanning/codeql:analyze",
- "environment": "{\"build-mode\":\"none\",\"category\":\"/language:javascript-typescript\",\"language\":\"javascript-typescript\",\"runner\":\"[\\\"ubuntu-22.04\\\"]\"}",
- "category": "/language:javascript-typescript",
- "state": "open",
- "commit_sha": "6d1d9ecb955481bd8d36e66cb2b9141a58168109",
- "message": {
- "text": "Postmessage handler has no origin check."
- },
- "location": {
- "path": "static/to_compile/js/iframe.ts",
- "start_line": 6,
- "end_line": 6,
- "start_column": 37,
- "end_column": 42
- },
- "classifications": []
- },
- "instances_url": "https://api.github.com/repos/incubateur-ademe/quefairedemesobjets/code-scanning/alerts/21/instances"
- }
- ]
+ "grade": "A",
+ "alerts": []
}
]
},
@@ -26968,7 +26053,7 @@
"ip": "longuevieauxobjets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "supported"
+ "finding": "not supported"
},
{
"id": "sessionresumption_ID",
@@ -27038,7 +26123,7 @@
"ip": "longuevieauxobjets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "04797AB3C0C26E1C87D15706321E263FF913"
+ "finding": "03B37043237567FC1BEF47F324CB8E3A802B"
},
{
"id": "cert_serialNumberLen",
@@ -27052,21 +26137,21 @@
"ip": "longuevieauxobjets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "B2EC25F1BEEBEE2B0122F03F1252637C8594F3AF"
+ "finding": "F5A3FEEB968AE1169384BCDD4456C7623BFC0629"
},
{
"id": "cert_fingerprintSHA256",
"ip": "longuevieauxobjets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "95BCD31C2BA37E996B4074F8D28F391680276F6CDBCD43642FC98A10BEB6AADD"
+ "finding": "61ABB7AF346145908343409D4BF8FE0B6B891C829DC67156CE7288CC93AB6D58"
},
{
"id": "cert",
"ip": "longuevieauxobjets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName",
@@ -27122,21 +26207,21 @@
"ip": "longuevieauxobjets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
- "finding": "52 >= 30 days"
+ "finding": "77 >= 30 days"
},
{
"id": "cert_notBefore",
"ip": "longuevieauxobjets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-19 12:38"
+ "finding": "2025-02-17 12:39"
},
{
"id": "cert_notAfter",
"ip": "longuevieauxobjets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
- "finding": "2025-03-19 12:38"
+ "finding": "2025-05-18 12:39"
},
{
"id": "cert_extlifeSpan",
@@ -27283,7 +26368,7 @@
"ip": "longuevieauxobjets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "1737858744"
+ "finding": "1740882169"
},
{
"id": "HSTS",
@@ -27477,7 +26562,7 @@
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=95BCD31C2BA37E996B4074F8D28F391680276F6CDBCD43642FC98A10BEB6AADD"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=61ABB7AF346145908343409D4BF8FE0B6B891C829DC67156CE7288CC93AB6D58"
},
{
"id": "LOGJAM",
@@ -27857,77 +26942,77 @@
},
{
"id": "service",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -27935,7 +27020,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -27943,7 +27028,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -27951,7 +27036,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -27959,7 +27044,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -27967,7 +27052,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -27975,469 +27060,469 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "77 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-19 12:38"
+ "finding": "2025-02-17 12:39"
},
{
"id": "cert_notAfter",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
- "finding": "2025-03-19 12:38"
+ "finding": "2025-05-18 12:39"
},
{
"id": "cert_extlifeSpan",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http://r11.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "R11 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "R11 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "0 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "1737858801"
+ "finding": "1740882252"
},
{
"id": "HSTS",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "HPKP",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "DENY"
},
{
"id": "X-Content-Type-Options",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Cross-Origin-Opener-Policy",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "Referrer-Policy",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "banner_reverseproxy",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -28445,7 +27530,7 @@
},
{
"id": "heartbleed",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -28454,7 +27539,7 @@
},
{
"id": "CCS",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -28463,7 +27548,7 @@
},
{
"id": "ticketbleed",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -28472,7 +27557,7 @@
},
{
"id": "ROBOT",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -28481,7 +27566,7 @@
},
{
"id": "secure_renego",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -28489,7 +27574,7 @@
},
{
"id": "secure_client_renego",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -28498,7 +27583,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -28507,7 +27592,7 @@
},
{
"id": "BREACH",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -28516,7 +27601,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -28525,14 +27610,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -28541,7 +27626,7 @@
},
{
"id": "FREAK",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -28550,7 +27635,7 @@
},
{
"id": "DROWN",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -28559,16 +27644,16 @@
},
{
"id": "DROWN_hint",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=95BCD31C2BA37E996B4074F8D28F391680276F6CDBCD43642FC98A10BEB6AADD"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=61ABB7AF346145908343409D4BF8FE0B6B891C829DC67156CE7288CC93AB6D58"
},
{
"id": "LOGJAM",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -28577,7 +27662,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -28586,7 +27671,7 @@
},
{
"id": "BEAST",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -28595,7 +27680,7 @@
},
{
"id": "LUCKY13",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -28604,7 +27689,7 @@
},
{
"id": "winshock",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -28613,7 +27698,7 @@
},
{
"id": "RC4",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -28622,399 +27707,399 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "A"
},
{
"id": "grade_cap_reason_1",
- "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
+ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "Grade capped to A. HSTS is not offered"
},
{
"id": "service",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -29022,7 +28107,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -29030,7 +28115,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -29038,7 +28123,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -29046,7 +28131,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -29054,7 +28139,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -29062,469 +28147,469 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "77 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-19 12:38"
+ "finding": "2025-02-17 12:39"
},
{
"id": "cert_notAfter",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
- "finding": "2025-03-19 12:38"
+ "finding": "2025-05-18 12:39"
},
{
"id": "cert_extlifeSpan",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "http://r11.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "R11 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "R11 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "0 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "1737858866"
+ "finding": "1740882326"
},
{
"id": "HSTS",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "HPKP",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "DENY"
},
{
"id": "X-Content-Type-Options",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Cross-Origin-Opener-Policy",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "Referrer-Policy",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "banner_reverseproxy",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -29532,7 +28617,7 @@
},
{
"id": "heartbleed",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -29541,7 +28626,7 @@
},
{
"id": "CCS",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -29550,7 +28635,7 @@
},
{
"id": "ticketbleed",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -29559,7 +28644,7 @@
},
{
"id": "ROBOT",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -29568,7 +28653,7 @@
},
{
"id": "secure_renego",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -29576,7 +28661,7 @@
},
{
"id": "secure_client_renego",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -29585,7 +28670,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -29594,7 +28679,7 @@
},
{
"id": "BREACH",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -29603,7 +28688,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -29612,14 +28697,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -29628,7 +28713,7 @@
},
{
"id": "FREAK",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -29637,7 +28722,7 @@
},
{
"id": "DROWN",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -29646,16 +28731,16 @@
},
{
"id": "DROWN_hint",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=95BCD31C2BA37E996B4074F8D28F391680276F6CDBCD43642FC98A10BEB6AADD"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=61ABB7AF346145908343409D4BF8FE0B6B891C829DC67156CE7288CC93AB6D58"
},
{
"id": "LOGJAM",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -29664,7 +28749,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -29673,7 +28758,7 @@
},
{
"id": "BEAST",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -29682,7 +28767,7 @@
},
{
"id": "LUCKY13",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -29691,7 +28776,7 @@
},
{
"id": "winshock",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -29700,7 +28785,7 @@
},
{
"id": "RC4",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -29709,322 +28794,322 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "A"
},
{
"id": "grade_cap_reason_1",
- "ip": "longuevieauxobjets.ademe.fr/5.104.101.30",
+ "ip": "longuevieauxobjets.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "Grade capped to A. HSTS is not offered"
@@ -30299,7 +29384,7 @@
"ip": "longuevieauxobjets.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "04797AB3C0C26E1C87D15706321E263FF913"
+ "finding": "03B37043237567FC1BEF47F324CB8E3A802B"
},
{
"id": "cert_serialNumberLen",
@@ -30313,21 +29398,21 @@
"ip": "longuevieauxobjets.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "B2EC25F1BEEBEE2B0122F03F1252637C8594F3AF"
+ "finding": "F5A3FEEB968AE1169384BCDD4456C7623BFC0629"
},
{
"id": "cert_fingerprintSHA256",
"ip": "longuevieauxobjets.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "95BCD31C2BA37E996B4074F8D28F391680276F6CDBCD43642FC98A10BEB6AADD"
+ "finding": "61ABB7AF346145908343409D4BF8FE0B6B891C829DC67156CE7288CC93AB6D58"
},
{
"id": "cert",
"ip": "longuevieauxobjets.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\nMIIFBzCCA++gAwIBAgISBHl6s8DCbhyH0VcGMh4mP/kTMA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTEwHhcNMjQxMjE5MTIzODQxWhcNMjUwMzE5MTIzODQwWjAmMSQwIgYDVQQDExtsb25ndWV2aWVhdXhvYmpldHMuYWRlbWUuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf0Mgd1DS7EFJTayrnohM8qsu34NoRS+5NmbuA8RYpPV4FLVtXhFVJZ2k8/gOfBZczYjxVp1BfSUsDeHoH8Aod6SVKT7sQ4wRRo+fdzXWZNBWb0JaJ/Mvv25UNX+0pJPmMRvpHd2fMzVllgEyObvaynGgQOPZjDLmgP+zRPI+fEnp5XJNpVFDYFe8gzrmtCzcu4n3y+xL6n9zthka/pRjz5jrvHRIJBQ7REHTONiCgxYepI5M/zIZ4CBzPTbnnkmFCufUJfjJ5Fj5+XQPDOiiq6ff4j8zM3zbBwgTEJdUfhKl68mdGVElEul8HclKgNJ6AvpS7/061/IhwAJyqCrXVAgMBAAGjggIgMIICHDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJrEIGU50HC+BamV3r6ADkPrOfIOMB8GA1UdIwQYMBaAFMXPRqTq9MPAemyVxC2wXpIvJuO5MFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMS5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMS5pLmxlbmNyLm9yZy8wJgYDVR0RBB8wHYIbbG9uZ3VldmllYXV4b2JqZXRzLmFkZW1lLmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcAfVkeEuF4KnscYWd8Xv340IdcFKBOlZ65Ay/ZDowuebgAAAGT3yL7iwAABAMASDBGAiEA4IqYVLCnBw4eUL04vTyYFGkSD8pHMvYNfTeUEakgdSACIQCscNl2K4IIxQKTrHenVWpZPmK01mCRvLN+6lNJy9AIAQB2AOCSs/wMHcjnaDYf3mG5lk0KUngZinLWcsSwTaVtb1QEAAABk98i/GAAAAQDAEcwRQIgR7CWFZMHKJ7khaHpmZfX/JT6JHL8kW1eK7MohVAqN5ICIQC9/EBif21o6JJ7HrJkpR+i/d7s/3ZBhUCy3ThPtpt11TANBgkqhkiG9w0BAQsFAAOCAQEAM5/KCV+oLmfGBdObBA4nDGn0cQ/RVUUEcMKWRA3WMQeD1OUyxZf18DvyY9EVD7PJ02mWAfkoHKRG/AfCNGPD6E5sQ/fmB0GXb3Rl3KJ/CbYxNFym2S5gJZlUdZpO8VHu2XhfcA0mJ+FOd+f8cnj/3Ka4F6Oqcuh9C7/k3cTUyK92mxJOMmcbeMlYtRQYhzhoxqyazGDsU8tfUrkNirnnHHtDV6XV1GpSkrPNRhQG4Z7BTdGq2TziGQy78WKEVPx0bqPwbM/i7xOdmjtV71UU97AuTowsRbeWbbsnWxM8HfTk5UFk2uu49YcEChQdLG7fVsZdbOGilWraJslgAs3tzQ==\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCA+6gAwIBAgISA7NwQyN1Z/wb70fzJMuOOoArMA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTEwHhcNMjUwMjE3MTIzOTQxWhcNMjUwNTE4MTIzOTQwWjAmMSQwIgYDVQQDExtsb25ndWV2aWVhdXhvYmpldHMuYWRlbWUuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiE5jMTr2O8LwdBKYzk9kMpaf0l8jyNJB3tnEhcFyTyUZKHRLzwh61QRdlw3iVhZTmEnSWAp5d/mHk9famrLWO3TQP3VKixtuwOmhq6joloGtqDYPyVaZTrG5kHbIGWbZ9z7zHoV2t2e/ZTthVOAE7fN7Ey2DXv8hVwSydU4IVs5DiTpgnxOBDReDI/souwu+UvCRkM5b4iV0dkv5qRb5D5XlBbQMsrj9N8z7KKHkO2FqB+1uO0muOdjFbrQgI3YicP1bRsscP0pSRJt1j6t4HRwwuUtRE8vx4btLhUFe8MyuTsN5BjFNRNExfuYoLNwQh+9/PiTfTzRoPK2Nub4pTAgMBAAGjggIfMIICGzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFFtFkEqFp6Ph7kULuV2w1AR9haqqMB8GA1UdIwQYMBaAFMXPRqTq9MPAemyVxC2wXpIvJuO5MFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMS5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMS5pLmxlbmNyLm9yZy8wJgYDVR0RBB8wHYIbbG9uZ3VldmllYXV4b2JqZXRzLmFkZW1lLmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAouMK5EXvva2bfjjtR2d3U9eCW4SU1yteGyzEuVCkR+cAAAGVFCFz8wAABAMARzBFAiEAxZxefd2CN8bT/w7qCS9S2WCt3NpnO3fv+wFXvoXxHscCIAz8krx2eilKInykq3e9AFVPdprDpsBUqgf7CLiT/NFUAHYAE0rfGrWYQgl4DG/vTHqRpBa3I0nOWFdq367ap8Kr4CIAAAGVFCF1zgAABAMARzBFAiB8k+uYQ9ncY52OpIqjAIKVq4nwgQM/q9qODWPS2+f/sgIhAJuKqwZyezOW04lLNcW0eGYBE6XxbBAYXP+8jhk9duW/MA0GCSqGSIb3DQEBCwUAA4IBAQBDA7QEMdjlPfrVkRig0VwK2Y8rS1kGU1Ztquo26737Zmqidcd+eh4HoCnF47s84toIXqp/w0AIOO8AAkN9puv9SgNkR+JLnhC9ilGIn8fA4jnycfZzjEslGcg8y/xsSXi80K94+oTjHVsVN1vBVEzKYOss/QMPOAkwiWA/aloMLy0s2a6gLk8MwceIe7SM1pwNfxEuINtMB8OIH77Zhxv4ovddeX76DLR1FKFXWGeGK7ATD1S9IWfPgn1zeBeRpER9wpfCKN1hqR7iCtdEsfC+FDOzhAOfhxHcdt8udfd+HjkLfwlQGe0QPZy4K/TLOoVbHm+mUaWxjCeydQW14Ief\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName",
@@ -30383,21 +29468,21 @@
"ip": "longuevieauxobjets.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
- "finding": "52 >= 30 days"
+ "finding": "77 >= 30 days"
},
{
"id": "cert_notBefore",
"ip": "longuevieauxobjets.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-19 12:38"
+ "finding": "2025-02-17 12:39"
},
{
"id": "cert_notAfter",
"ip": "longuevieauxobjets.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
- "finding": "2025-03-19 12:38"
+ "finding": "2025-05-18 12:39"
},
{
"id": "cert_extlifeSpan",
@@ -30537,14 +29622,14 @@
"ip": "longuevieauxobjets.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "-1 seconds from localtime"
+ "finding": "0 seconds from localtime"
},
{
"id": "HTTP_headerTime",
"ip": "longuevieauxobjets.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "1737858939"
+ "finding": "1740882407"
},
{
"id": "HSTS",
@@ -30738,7 +29823,7 @@
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=95BCD31C2BA37E996B4074F8D28F391680276F6CDBCD43642FC98A10BEB6AADD"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=61ABB7AF346145908343409D4BF8FE0B6B891C829DC67156CE7288CC93AB6D58"
},
{
"id": "LOGJAM",
@@ -31121,7 +30206,7 @@
"ip": "longuevieauxobjets.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "261"
+ "finding": "314"
}
],
"thirdparties": {
@@ -31284,7 +30369,7 @@
"zap": {
"@programName": "ZAP",
"@version": "2.16.0",
- "@generated": "Sun, 26 Jan 2025 02:24:18",
+ "@generated": "Sun, 2 Mar 2025 02:20:33",
"site": [
{
"@name": "https://longuevieauxobjets.ademe.fr",
@@ -32025,7 +31110,7 @@
{
"requestedUrl": "https://longuevieauxobjets.ademe.fr/",
"finalUrl": "https://longuevieauxobjets.ademe.fr/",
- "fetchTime": "2025-01-26T02:31:40.143Z",
+ "fetchTime": "2025-03-02T02:20:48.537Z",
"runWarnings": [],
"categories": {
"performance": {
@@ -32036,7 +31121,7 @@
"snapshot"
],
"id": "performance",
- "score": 0.76
+ "score": 0.84
},
"accessibility": {
"title": "Accessibility",
@@ -32088,53 +31173,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 1833,
+ "numericValue": 1549,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 1833,
- "firstMeaningfulPaint": 1833,
- "largestContentfulPaint": 5878,
- "interactive": 1833,
- "speedIndex": 2532,
+ "firstContentfulPaint": 1549,
+ "firstMeaningfulPaint": 1549,
+ "largestContentfulPaint": 4352,
+ "interactive": 1549,
+ "speedIndex": 2221,
"totalBlockingTime": 0,
"maxPotentialFID": 16,
- "cumulativeLayoutShift": 0.08620943196614583,
- "cumulativeLayoutShiftMainFrame": 0.08620943196614583,
- "totalCumulativeLayoutShift": 0.08620943196614583,
+ "cumulativeLayoutShift": 0.07879874610900879,
+ "cumulativeLayoutShiftMainFrame": 0.07879874610900879,
+ "totalCumulativeLayoutShift": 0.07879874610900879,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 1219838646,
+ "observedTimeOriginTs": 293922760,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 1219838646,
- "observedFirstPaint": 852,
- "observedFirstPaintTs": 1220690382,
- "observedFirstContentfulPaint": 852,
- "observedFirstContentfulPaintTs": 1220690382,
- "observedFirstContentfulPaintAllFrames": 852,
- "observedFirstContentfulPaintAllFramesTs": 1220690382,
- "observedFirstMeaningfulPaint": 852,
- "observedFirstMeaningfulPaintTs": 1220690382,
- "observedLargestContentfulPaint": 1529,
- "observedLargestContentfulPaintTs": 1221368067,
- "observedLargestContentfulPaintAllFrames": 1529,
- "observedLargestContentfulPaintAllFramesTs": 1221368067,
- "observedTraceEnd": 4100,
- "observedTraceEndTs": 1223939077,
- "observedLoad": 1684,
- "observedLoadTs": 1221523046,
- "observedDomContentLoaded": 849,
- "observedDomContentLoadedTs": 1220687943,
- "observedCumulativeLayoutShift": 0.08620943196614583,
- "observedCumulativeLayoutShiftMainFrame": 0.08620943196614583,
- "observedTotalCumulativeLayoutShift": 0.08620943196614583,
- "observedFirstVisualChange": 862,
- "observedFirstVisualChangeTs": 1220700646,
- "observedLastVisualChange": 1529,
- "observedLastVisualChangeTs": 1221367646,
- "observedSpeedIndex": 1136,
- "observedSpeedIndexTs": 1220974826
+ "observedNavigationStartTs": 293922760,
+ "observedFirstPaint": 839,
+ "observedFirstPaintTs": 294761320,
+ "observedFirstContentfulPaint": 839,
+ "observedFirstContentfulPaintTs": 294761320,
+ "observedFirstContentfulPaintAllFrames": 839,
+ "observedFirstContentfulPaintAllFramesTs": 294761320,
+ "observedFirstMeaningfulPaint": 839,
+ "observedFirstMeaningfulPaintTs": 294761320,
+ "observedLargestContentfulPaint": 1331,
+ "observedLargestContentfulPaintTs": 295253613,
+ "observedLargestContentfulPaintAllFrames": 1331,
+ "observedLargestContentfulPaintAllFramesTs": 295253613,
+ "observedTraceEnd": 4171,
+ "observedTraceEndTs": 298093432,
+ "observedLoad": 1752,
+ "observedLoadTs": 295675149,
+ "observedDomContentLoaded": 424,
+ "observedDomContentLoadedTs": 294347179,
+ "observedCumulativeLayoutShift": 0.07879874610900879,
+ "observedCumulativeLayoutShiftMainFrame": 0.07879874610900879,
+ "observedTotalCumulativeLayoutShift": 0.07879874610900879,
+ "observedFirstVisualChange": 848,
+ "observedFirstVisualChangeTs": 294770760,
+ "observedLastVisualChange": 1465,
+ "observedLastVisualChangeTs": 295387760,
+ "observedSpeedIndex": 1046,
+ "observedSpeedIndexTs": 294968867
},
{
"lcpInvalidated": false
@@ -32152,23 +31237,23 @@
"type": "debugdata",
"items": [
{
- "numRequests": 37,
+ "numRequests": 34,
"numScripts": 2,
"numStylesheets": 4,
"numFonts": 4,
- "numTasks": 40,
+ "numTasks": 36,
"numTasksOver10ms": 0,
"numTasksOver25ms": 0,
"numTasksOver50ms": 0,
"numTasksOver100ms": 0,
"numTasksOver500ms": 0,
- "rtt": 98.723,
- "throughput": 25118819.057196308,
- "maxRtt": 107.368,
- "maxServerLatency": 159.73199999999997,
- "totalByteWeight": 2759588,
- "totalTaskTime": 8.774000000000004,
- "mainDocumentTransferSize": 8235
+ "rtt": 99.005,
+ "throughput": 12916762.402876563,
+ "maxRtt": 111.68,
+ "maxServerLatency": 5.509999999999991,
+ "totalByteWeight": 1708991,
+ "totalTaskTime": 12.273000000000005,
+ "mainDocumentTransferSize": 7507
}
]
}
@@ -32282,15 +31367,15 @@
"width": 1920,
"height": 1080,
"url": "https://longuevieauxobjets.ademe.fr",
- "size": 2977.521,
- "nodes": 290,
- "requests": 34,
- "grade": "C",
- "score": 68,
- "ges": 1.64,
- "water": 2.46,
+ "size": 1908.929,
+ "nodes": 249,
+ "requests": 31,
+ "grade": "B",
+ "score": 73,
+ "ges": 1.54,
+ "water": 2.31,
"ecoindex_version": "5.4.2",
- "date": "2025-01-26 02:25:34.828101",
+ "date": "2025-03-02 02:18:42.876320",
"page_type": "article"
}
],
@@ -32301,16 +31386,19 @@
"summary": {
"404": 3,
"httpGrade": "D",
- "apdex": 0.924,
+ "apdex": 0.92,
"apdexGrade": "F",
"uptime": 100,
"uptimeGrade": "A",
+ "nmapGrade": "A",
+ "nmapOpenPortsCount": 2,
+ "nmapOpenPortsGrade": "A",
"dependabotGrade": "C",
- "dependabotCount": 10,
- "codescanCount": 1,
- "codescanGrade": "D",
- "testsslExpireSoon": true,
- "testsslExpireDate": "2025-03-19T12:38:00.000Z",
+ "dependabotCount": 11,
+ "codescanCount": 0,
+ "codescanGrade": "A",
+ "testsslExpireSoon": false,
+ "testsslExpireDate": "2025-05-18T12:39:00.000Z",
"testsslGrade": "A",
"cookiesGrade": null,
"cookiesCount": null,
@@ -32318,8 +31406,8 @@
"trackersCount": null,
"zapCount": 7,
"zapGrade": "D",
- "lighthouse_performance": 0.76,
- "lighthouse_performanceGrade": "B",
+ "lighthouse_performance": 0.84,
+ "lighthouse_performanceGrade": "A",
"lighthouse_accessibility": 0.98,
"lighthouse_accessibilityGrade": "A",
"lighthouse_best-practices": 1,
@@ -32334,7 +31422,7 @@
"declaration-a11y": "C",
"declaration-rgpd-ml": "A",
"declaration-rgpd-pc": "A",
- "ecoindexGrade": "C",
+ "ecoindexGrade": "B",
"dsfrGrade": "A"
}
},
@@ -32360,183 +31448,147 @@
}
},
"http": {
- "url": "https://lvao.ademe.fr",
- "algorithm_version": 3,
- "end_time": "Sun, 20 Oct 2024 02:44:35 GMT",
- "grade": "C",
- "hidden": false,
- "likelihood_indicator": "MEDIUM",
- "response_headers": {
- "Connection": "keep-alive",
- "Content-Encoding": "gzip",
- "Content-Type": "text/html; charset=utf-8",
- "Cross-Origin-Opener-Policy": "same-origin",
- "Date": "Sun, 20 Oct 2024 02:44:34 GMT",
- "Referrer-Policy": "same-origin",
- "Transfer-Encoding": "chunked",
- "Vary": "Cookie, origin",
- "X-Content-Type-Options": "nosniff",
- "X-Frame-Options": "ALLOWALL",
- "X-Request-ID": "63c047ff-b376-4a30-ae7e-8219d047fef7",
- "strict-transport-security": "max-age=31536000"
- },
- "scan_id": 57048137,
- "score": 55,
- "start_time": "Sun, 20 Oct 2024 02:44:33 GMT",
- "state": "FINISHED",
- "status_code": 200,
- "tests_failed": 2,
- "tests_passed": 8,
- "tests_quantity": 10,
- "details": {
+ "scan": {
+ "algorithmVersion": 4,
+ "grade": "C",
+ "error": null,
+ "score": 55,
+ "statusCode": 200,
+ "testsFailed": 2,
+ "testsPassed": 8,
+ "testsQuantity": 10,
+ "responseHeaders": {
+ "date": "Sun, 02 Mar 2025 02:24:06 GMT",
+ "content-type": "text/html; charset=utf-8",
+ "transfer-encoding": "chunked",
+ "connection": "close",
+ "x-request-id": "aa98ce4a-1e9f-460f-b3ff-ebe3055766f9",
+ "vary": "Accept-Encoding, logged-in, iframe, Cookie, origin",
+ "cache-control": "max-age=900",
+ "x-frame-options": "ALLOWALL",
+ "x-content-type-options": "nosniff",
+ "referrer-policy": "strict-origin-when-cross-origin",
+ "cross-origin-opener-policy": "same-origin",
+ "x-cache-status": "HIT",
+ "strict-transport-security": "max-age=31536000"
+ }
+ },
+ "tests": {
"content-security-policy": {
"expectation": "csp-implemented-with-no-unsafe",
- "name": "content-security-policy",
- "output": {
- "data": null,
- "http": false,
- "meta": false,
- "numPolicies": 0,
- "policy": null
- },
"pass": false,
"result": "csp-not-implemented",
- "score_description": "Content Security Policy (CSP) header not implemented",
- "score_modifier": -25
+ "scoreModifier": -25,
+ "data": null,
+ "http": false,
+ "meta": false,
+ "policy": null,
+ "numPolicies": 0
},
"cookies": {
"expectation": "cookies-secure-with-httponly-sessions",
- "name": "cookies",
- "output": {
- "data": null,
- "sameSite": null
- },
"pass": true,
"result": "cookies-not-found",
- "score_description": "No cookies detected",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "sameSite": false
},
"cross-origin-resource-sharing": {
"expectation": "cross-origin-resource-sharing-not-implemented",
- "name": "cross-origin-resource-sharing",
- "output": {
- "data": {
- "acao": null,
- "clientaccesspolicy": null,
- "crossdomain": null
- }
- },
"pass": true,
"result": "cross-origin-resource-sharing-not-implemented",
- "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null
},
"redirection": {
"expectation": "redirection-to-https",
- "name": "redirection",
- "output": {
- "destination": "https://lvao.ademe.fr/",
- "redirects": true,
- "route": [
- "http://lvao.ademe.fr/",
- "https://lvao.ademe.fr/"
- ],
- "status_code": 200
- },
"pass": true,
"result": "redirection-to-https",
- "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "destination": "https://lvao.ademe.fr/",
+ "redirects": true,
+ "route": [
+ "http://lvao.ademe.fr/",
+ "https://lvao.ademe.fr/"
+ ],
+ "statusCode": 200
},
"referrer-policy": {
"expectation": "referrer-policy-private",
- "name": "referrer-policy",
- "output": {
- "data": "same-origin",
- "http": true,
- "meta": false
- },
"pass": true,
"result": "referrer-policy-private",
- "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"",
- "score_modifier": 5
+ "scoreModifier": 5,
+ "data": "strict-origin-when-cross-origin",
+ "http": true,
+ "meta": false
},
"strict-transport-security": {
"expectation": "hsts-implemented-max-age-at-least-six-months",
- "name": "strict-transport-security",
- "output": {
- "data": "max-age=31536000",
- "includeSubDomains": false,
- "max-age": 31536000,
- "preload": false,
- "preloaded": false
- },
"pass": true,
"result": "hsts-implemented-max-age-at-least-six-months",
- "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "max-age=31536000",
+ "includeSubDomains": false,
+ "maxAge": 31536000,
+ "preload": false,
+ "preloaded": false
},
"subresource-integrity": {
"expectation": "sri-implemented-and-external-scripts-loaded-securely",
- "name": "subresource-integrity",
- "output": {
- "data": {}
- },
"pass": true,
- "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin",
- "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin",
- "score_modifier": 0
+ "result": "sri-implemented-and-all-scripts-loaded-securely",
+ "scoreModifier": 5,
+ "data": {}
},
"x-content-type-options": {
"expectation": "x-content-type-options-nosniff",
- "name": "x-content-type-options",
- "output": {
- "data": "nosniff"
- },
"pass": true,
"result": "x-content-type-options-nosniff",
- "score_description": "X-Content-Type-Options header set to \"nosniff\"",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "nosniff"
},
"x-frame-options": {
"expectation": "x-frame-options-sameorigin-or-deny",
- "name": "x-frame-options",
- "output": {
- "data": "ALLOWALL"
- },
"pass": false,
"result": "x-frame-options-header-invalid",
- "score_description": "X-Frame-Options (XFO) header cannot be recognized",
- "score_modifier": -20
- },
- "x-xss-protection": {
- "expectation": "x-xss-protection-disabled",
- "name": "x-xss-protection",
- "output": {
- "data": null
- },
+ "scoreModifier": -20,
+ "data": "ALLOWALL"
+ },
+ "cross-origin-resource-policy": {
+ "expectation": "corp-implemented-with-same-site",
"pass": true,
- "result": "x-xss-protection-not-implemented",
- "score_description": "Deprecated X-XSS-Protection header not implemented",
- "score_modifier": 0
+ "result": "corp-not-implemented",
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
}
}
},
"updownio": {
"token": "uubx",
"url": "https://lvao.ademe.fr",
+ "type": "https",
"alias": "Longue Vie Aux Objets - iframe",
- "last_status": 200,
"uptime": 100,
"down": false,
"down_since": null,
- "up_since": "2025-01-19T02:25:43Z",
+ "up_since": "2025-02-24T23:07:21Z",
"error": null,
"period": 300,
- "apdex_t": 0.5,
"string_match": "",
"enabled": true,
"published": true,
+ "recipients": [
+ "email:1558568615",
+ "email:1520458361"
+ ],
+ "last_check_at": "2025-03-02T02:36:18Z",
+ "next_check_at": "2025-03-02T02:41:17Z",
+ "created_at": "2024-06-27T10:03:06Z",
+ "mute_until": null,
+ "last_status": 200,
+ "apdex_t": 0.5,
"disabled_locations": [
"lan",
"mia",
@@ -32545,47 +31597,60 @@
"tok",
"syd"
],
- "recipients": [
- "email:1558568615",
- "email:1520458361"
- ],
- "last_check_at": "2025-01-26T02:46:50Z",
- "next_check_at": "2025-01-26T02:51:50Z",
- "created_at": "2024-06-27T10:03:06Z",
- "mute_until": null,
- "favicon_url": "https://longuevieauxobjets.ademe.fr/static/dsfr/dist/favicon/favicon.ico",
"custom_headers": {},
+ "favicon_url": "https://lvao.ademe.fr/static/favicon/favicon.24fa95135437.ico",
"http_verb": "GET/HEAD",
"http_body": "",
"ssl": {
- "tested_at": "2025-01-26T02:46:51Z",
- "expires_at": "2025-03-03T14:32:41Z",
+ "tested_at": "2025-03-02T02:36:18Z",
+ "expires_at": "2025-05-02T14:33:37Z",
"valid": true,
"error": null
},
"metrics": {
- "apdex": 0.96,
+ "apdex": 1,
"timings": {
- "redirect": 340,
- "namelookup": 0,
- "connection": 0,
- "handshake": 0,
- "response": 208,
- "total": 547
+ "redirect": 0,
+ "namelookup": 13,
+ "connection": 21,
+ "handshake": 28,
+ "response": 24,
+ "total": 86
}
},
"uptimeGrade": "A",
- "apdexGrade": "E"
+ "apdexGrade": "A"
+ },
+ "nmap": {
+ "host": "lvao.ademe.fr",
+ "protocol": "tcp",
+ "closed_ports": "998",
+ "open_ports": [
+ {
+ "service": {
+ "name": "http",
+ "id": "80",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "https",
+ "id": "443",
+ "vulnerabilities": []
+ }
+ }
+ ],
+ "grade": "A"
},
- "nmap": null,
"dependabot": {
- "totalCount": 10,
+ "totalCount": 11,
"grade": "C",
"repositories": [
{
"url": "https://github.com/incubateur-ademe/quefairedemesobjets",
"vulnerabilityAlerts": {
- "totalCount": 10,
+ "totalCount": 11,
"nodes": [
{
"dismissedAt": null,
@@ -32763,6 +31828,9 @@
{
"url": "https://github.com/pallets/werkzeug/releases/tag/3.0.6"
},
+ {
+ "url": "https://security.netapp.com/advisory/ntap-20250131-0005"
+ },
{
"url": "https://github.com/advisories/GHSA-f9vj-2wh5-fj8j"
}
@@ -32850,6 +31918,9 @@
{
"url": "https://github.com/pallets/werkzeug/releases/tag/3.0.6"
},
+ {
+ "url": "https://security.netapp.com/advisory/ntap-20250131-0005"
+ },
{
"url": "https://github.com/advisories/GHSA-f9vj-2wh5-fj8j"
}
@@ -32859,50 +31930,77 @@
},
{
"dismissedAt": null,
- "createdAt": "2025-01-14T22:21:25Z",
+ "createdAt": "2025-01-16T08:22:01Z",
"securityVulnerability": {
"severity": "MODERATE",
"package": {
- "name": "Django"
+ "name": "scikit-learn"
},
"advisory": {
"identifiers": [
{
"type": "GHSA",
- "value": "GHSA-qcgg-j2x8-h9g8"
+ "value": "GHSA-jw8x-6495-233v"
},
{
"type": "CVE",
- "value": "CVE-2024-56374"
+ "value": "CVE-2024-5206"
}
],
"references": [
{
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56374"
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-5206"
+ },
+ {
+ "url": "https://github.com/scikit-learn/scikit-learn/commit/70ca21f106b603b611da73012c9ade7cd8e438b8"
},
{
- "url": "https://docs.djangoproject.com/en/dev/releases/security"
+ "url": "https://huntr.com/bounties/14bc0917-a85b-4106-a170-d09d5191517c"
},
{
- "url": "https://groups.google.com/g/django-announce"
+ "url": "https://github.com/pypa/advisory-database/tree/main/vulns/scikit-learn/PYSEC-2024-110.yaml"
},
{
- "url": "https://www.djangoproject.com/weblog/2025/jan/14/security-releases"
+ "url": "https://github.com/advisories/GHSA-jw8x-6495-233v"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-01-16T08:22:01Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "scikit-learn"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-jw8x-6495-233v"
},
{
- "url": "http://www.openwall.com/lists/oss-security/2025/01/14/2"
+ "type": "CVE",
+ "value": "CVE-2024-5206"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-5206"
},
{
- "url": "https://github.com/django/django/commit/ca2be7724e1244a4cb723de40a070f873c6e94bf"
+ "url": "https://github.com/scikit-learn/scikit-learn/commit/70ca21f106b603b611da73012c9ade7cd8e438b8"
},
{
- "url": "https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2025-1.yaml"
+ "url": "https://huntr.com/bounties/14bc0917-a85b-4106-a170-d09d5191517c"
},
{
- "url": "https://lists.debian.org/debian-lts-announce/2025/01/msg00024.html"
+ "url": "https://github.com/pypa/advisory-database/tree/main/vulns/scikit-learn/PYSEC-2024-110.yaml"
},
{
- "url": "https://github.com/advisories/GHSA-qcgg-j2x8-h9g8"
+ "url": "https://github.com/advisories/GHSA-jw8x-6495-233v"
}
]
}
@@ -32910,50 +32008,50 @@
},
{
"dismissedAt": null,
- "createdAt": "2025-01-14T22:21:25Z",
+ "createdAt": "2025-02-11T18:54:36Z",
"securityVulnerability": {
- "severity": "MODERATE",
+ "severity": "LOW",
"package": {
- "name": "Django"
+ "name": "cryptography"
},
"advisory": {
"identifiers": [
{
"type": "GHSA",
- "value": "GHSA-qcgg-j2x8-h9g8"
+ "value": "GHSA-79v4-65xg-pq4g"
},
{
"type": "CVE",
- "value": "CVE-2024-56374"
+ "value": "CVE-2024-12797"
}
],
"references": [
{
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56374"
+ "url": "https://github.com/pyca/cryptography/security/advisories/GHSA-79v4-65xg-pq4g"
},
{
- "url": "https://docs.djangoproject.com/en/dev/releases/security"
+ "url": "https://openssl-library.org/news/secadv/20250211.txt"
},
{
- "url": "https://groups.google.com/g/django-announce"
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-12797"
},
{
- "url": "https://www.djangoproject.com/weblog/2025/jan/14/security-releases"
+ "url": "https://github.com/openssl/openssl/commit/738d4f9fdeaad57660dcba50a619fafced3fd5e9"
},
{
- "url": "http://www.openwall.com/lists/oss-security/2025/01/14/2"
+ "url": "https://github.com/openssl/openssl/commit/798779d43494549b611233f92652f0da5328fbe7"
},
{
- "url": "https://github.com/django/django/commit/ca2be7724e1244a4cb723de40a070f873c6e94bf"
+ "url": "https://github.com/openssl/openssl/commit/87ebd203feffcf92ad5889df92f90bb0ee10a699"
},
{
- "url": "https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2025-1.yaml"
+ "url": "http://www.openwall.com/lists/oss-security/2025/02/11/3"
},
{
- "url": "https://lists.debian.org/debian-lts-announce/2025/01/msg00024.html"
+ "url": "http://www.openwall.com/lists/oss-security/2025/02/11/4"
},
{
- "url": "https://github.com/advisories/GHSA-qcgg-j2x8-h9g8"
+ "url": "https://github.com/advisories/GHSA-79v4-65xg-pq4g"
}
]
}
@@ -32961,38 +32059,50 @@
},
{
"dismissedAt": null,
- "createdAt": "2025-01-16T08:22:01Z",
+ "createdAt": "2025-02-11T18:54:36Z",
"securityVulnerability": {
- "severity": "MODERATE",
+ "severity": "LOW",
"package": {
- "name": "scikit-learn"
+ "name": "cryptography"
},
"advisory": {
"identifiers": [
{
"type": "GHSA",
- "value": "GHSA-jw8x-6495-233v"
+ "value": "GHSA-79v4-65xg-pq4g"
},
{
"type": "CVE",
- "value": "CVE-2024-5206"
+ "value": "CVE-2024-12797"
}
],
"references": [
{
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-5206"
+ "url": "https://github.com/pyca/cryptography/security/advisories/GHSA-79v4-65xg-pq4g"
},
{
- "url": "https://github.com/scikit-learn/scikit-learn/commit/70ca21f106b603b611da73012c9ade7cd8e438b8"
+ "url": "https://openssl-library.org/news/secadv/20250211.txt"
},
{
- "url": "https://huntr.com/bounties/14bc0917-a85b-4106-a170-d09d5191517c"
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-12797"
},
{
- "url": "https://github.com/pypa/advisory-database/tree/main/vulns/scikit-learn/PYSEC-2024-110.yaml"
+ "url": "https://github.com/openssl/openssl/commit/738d4f9fdeaad57660dcba50a619fafced3fd5e9"
},
{
- "url": "https://github.com/advisories/GHSA-jw8x-6495-233v"
+ "url": "https://github.com/openssl/openssl/commit/798779d43494549b611233f92652f0da5328fbe7"
+ },
+ {
+ "url": "https://github.com/openssl/openssl/commit/87ebd203feffcf92ad5889df92f90bb0ee10a699"
+ },
+ {
+ "url": "http://www.openwall.com/lists/oss-security/2025/02/11/3"
+ },
+ {
+ "url": "http://www.openwall.com/lists/oss-security/2025/02/11/4"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-79v4-65xg-pq4g"
}
]
}
@@ -33000,38 +32110,50 @@
},
{
"dismissedAt": null,
- "createdAt": "2025-01-16T08:22:01Z",
+ "createdAt": "2025-02-11T18:54:36Z",
"securityVulnerability": {
- "severity": "MODERATE",
+ "severity": "LOW",
"package": {
- "name": "scikit-learn"
+ "name": "cryptography"
},
"advisory": {
"identifiers": [
{
"type": "GHSA",
- "value": "GHSA-jw8x-6495-233v"
+ "value": "GHSA-79v4-65xg-pq4g"
},
{
"type": "CVE",
- "value": "CVE-2024-5206"
+ "value": "CVE-2024-12797"
}
],
"references": [
{
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-5206"
+ "url": "https://github.com/pyca/cryptography/security/advisories/GHSA-79v4-65xg-pq4g"
},
{
- "url": "https://github.com/scikit-learn/scikit-learn/commit/70ca21f106b603b611da73012c9ade7cd8e438b8"
+ "url": "https://openssl-library.org/news/secadv/20250211.txt"
},
{
- "url": "https://huntr.com/bounties/14bc0917-a85b-4106-a170-d09d5191517c"
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-12797"
},
{
- "url": "https://github.com/pypa/advisory-database/tree/main/vulns/scikit-learn/PYSEC-2024-110.yaml"
+ "url": "https://github.com/openssl/openssl/commit/738d4f9fdeaad57660dcba50a619fafced3fd5e9"
},
{
- "url": "https://github.com/advisories/GHSA-jw8x-6495-233v"
+ "url": "https://github.com/openssl/openssl/commit/798779d43494549b611233f92652f0da5328fbe7"
+ },
+ {
+ "url": "https://github.com/openssl/openssl/commit/87ebd203feffcf92ad5889df92f90bb0ee10a699"
+ },
+ {
+ "url": "http://www.openwall.com/lists/oss-security/2025/02/11/3"
+ },
+ {
+ "url": "http://www.openwall.com/lists/oss-security/2025/02/11/4"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-79v4-65xg-pq4g"
}
]
}
@@ -33044,144 +32166,90 @@
]
},
"codescan": {
- "totalCount": 1,
- "grade": "D",
+ "totalCount": 0,
+ "grade": "A",
"repositories": [
{
"url": "https://github.com/incubateur-ademe/quefairedemesobjets",
- "grade": "D",
- "alerts": [
- {
- "number": 21,
- "created_at": "2024-11-14T09:49:13Z",
- "updated_at": "2024-11-19T20:49:10Z",
- "url": "https://api.github.com/repos/incubateur-ademe/quefairedemesobjets/code-scanning/alerts/21",
- "html_url": "https://github.com/incubateur-ademe/quefairedemesobjets/security/code-scanning/21",
- "state": "open",
- "fixed_at": null,
- "dismissed_by": null,
- "dismissed_at": null,
- "dismissed_reason": null,
- "dismissed_comment": null,
- "rule": {
- "id": "js/missing-origin-check",
- "severity": "warning",
- "description": "Missing origin verification in `postMessage` handler",
- "name": "js/missing-origin-check",
- "tags": [
- "correctness",
- "external/cwe/cwe-020",
- "external/cwe/cwe-940",
- "security"
- ],
- "full_description": "Missing origin verification in a `postMessage` handler allows any windows to send arbitrary data to the handler.",
- "help": "# Missing origin verification in `postMessage` handler\nThe `\"message\"` event is used to send messages between windows. An untrusted window can send a message to a trusted window, and it is up to the receiver to verify the legitimacy of the message. One way of performing that verification is to check the `origin` of the message ensure that it originates from a trusted window.\n\n\n## Recommendation\nAlways verify the origin of incoming messages.\n\n\n## Example\nThe example below uses a received message to execute some code. However, the origin of the message is not checked, so it might be possible for an attacker to execute arbitrary code.\n\n\n```javascript\nfunction postMessageHandler(event) {\n let origin = event.origin.toLowerCase();\n\n console.log(origin)\n // BAD: the origin property is not checked\n eval(event.data);\n}\n\nwindow.addEventListener('message', postMessageHandler, false);\n\n```\nThe example is fixed below, where the origin is checked to be trusted. It is therefore not possible for a malicious user to perform an attack using an untrusted origin.\n\n\n```javascript\nfunction postMessageHandler(event) {\n console.log(event.origin)\n // GOOD: the origin property is checked\n if (event.origin === 'https://www.example.com') {\n // do something\n }\n}\n\nwindow.addEventListener('message', postMessageHandler, false);\n```\n\n## References\n* [Window.postMessage()](https://developer.mozilla.org/en-US/docs/Web/API/Window/postMessage).\n* [Web message manipulation](https://portswigger.net/web-security/dom-based/web-message-manipulation).\n* [The pitfalls of postMessage](https://labs.detectify.com/2016/12/08/the-pitfalls-of-postmessage/).\n* Common Weakness Enumeration: [CWE-20](https://cwe.mitre.org/data/definitions/20.html).\n* Common Weakness Enumeration: [CWE-940](https://cwe.mitre.org/data/definitions/940.html).\n",
- "security_severity_level": "medium"
- },
- "tool": {
- "name": "CodeQL",
- "guid": null,
- "version": "2.20.2"
- },
- "most_recent_instance": {
- "ref": "refs/heads/main",
- "analysis_key": "dynamic/github-code-scanning/codeql:analyze",
- "environment": "{\"build-mode\":\"none\",\"category\":\"/language:javascript-typescript\",\"language\":\"javascript-typescript\",\"runner\":\"[\\\"ubuntu-22.04\\\"]\"}",
- "category": "/language:javascript-typescript",
- "state": "open",
- "commit_sha": "6d1d9ecb955481bd8d36e66cb2b9141a58168109",
- "message": {
- "text": "Postmessage handler has no origin check."
- },
- "location": {
- "path": "static/to_compile/js/iframe.ts",
- "start_line": 6,
- "end_line": 6,
- "start_column": 37,
- "end_column": 42
- },
- "classifications": []
- },
- "instances_url": "https://api.github.com/repos/incubateur-ademe/quefairedemesobjets/code-scanning/alerts/21/instances"
- }
- ]
+ "grade": "A",
+ "alerts": []
}
]
},
"testssl": [
{
"id": "service",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -33189,7 +32257,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -33197,7 +32265,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -33205,7 +32273,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -33213,7 +32281,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -33221,7 +32289,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -33229,491 +32297,498 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "61 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-03 14:32"
+ "finding": "2025-02-01 14:33"
},
{
"id": "cert_notAfter",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
- "finding": "2025-03-03 14:32"
+ "finding": "2025-05-02 14:33"
},
{
"id": "cert_extlifeSpan",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "http://r11.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "R11 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "R11 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "301 Moved Permanently ('/')"
+ "finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "0 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "1737859525"
+ "finding": "1740882329"
},
{
"id": "HSTS_time",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "0 at '/' (30x detected, better try target URL of 30x)"
+ "finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "ALLOWALL"
},
{
"id": "X-Content-Type-Options",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Cross-Origin-Opener-Policy",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "Referrer-Policy",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "strict-origin-when-cross-origin"
},
+ {
+ "id": "Cache-Control",
+ "ip": "lvao.ademe.fr/148.253.75.120",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "max-age=900"
+ },
{
"id": "banner_reverseproxy",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
- "finding": "--"
+ "finding": "X-Cache-Status: HIT"
},
{
"id": "heartbleed",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -33722,7 +32797,7 @@
},
{
"id": "CCS",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -33731,7 +32806,7 @@
},
{
"id": "ticketbleed",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -33740,7 +32815,7 @@
},
{
"id": "ROBOT",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -33749,7 +32824,7 @@
},
{
"id": "secure_renego",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -33757,7 +32832,7 @@
},
{
"id": "secure_client_renego",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -33766,7 +32841,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -33775,16 +32850,16 @@
},
{
"id": "BREACH",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
- "severity": "OK",
+ "severity": "MEDIUM",
"cve": "CVE-2013-3587",
"cwe": "CWE-310",
- "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested"
+ "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested"
},
{
"id": "POODLE_SSL",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -33793,14 +32868,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -33809,7 +32884,7 @@
},
{
"id": "FREAK",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -33818,7 +32893,7 @@
},
{
"id": "DROWN",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -33827,16 +32902,16 @@
},
{
"id": "DROWN_hint",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D407BAC2C436CBD2F129C3B26D13D5192094BB18AEC9A2658E5BB2C812DAA431"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2919F7393F8A635EC521D86052D14F9FC465D555FAD21BE5CB06372C48F8EBF1"
},
{
"id": "LOGJAM",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -33845,7 +32920,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -33854,7 +32929,7 @@
},
{
"id": "BEAST",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -33863,7 +32938,7 @@
},
{
"id": "LUCKY13",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -33872,7 +32947,7 @@
},
{
"id": "winshock",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -33881,7 +32956,7 @@
},
{
"id": "RC4",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -33890,392 +32965,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "lvao.ademe.fr/109.232.233.130",
+ "ip": "lvao.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -34283,7 +33358,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -34291,7 +33366,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -34299,7 +33374,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -34307,7 +33382,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -34315,7 +33390,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -34323,491 +33398,498 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "61 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-03 14:32"
+ "finding": "2025-02-01 14:33"
},
{
"id": "cert_notAfter",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
- "finding": "2025-03-03 14:32"
+ "finding": "2025-05-02 14:33"
},
{
"id": "cert_extlifeSpan",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http://r11.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "R11 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "R11 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "301 Moved Permanently ('/')"
+ "finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "0 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "1737859574"
+ "finding": "1740882382"
},
{
"id": "HSTS_time",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "0 at '/' (30x detected, better try target URL of 30x)"
+ "finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "ALLOWALL"
},
{
"id": "X-Content-Type-Options",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Cross-Origin-Opener-Policy",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "Referrer-Policy",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "strict-origin-when-cross-origin"
},
+ {
+ "id": "Cache-Control",
+ "ip": "lvao.ademe.fr/5.104.101.30",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "max-age=900"
+ },
{
"id": "banner_reverseproxy",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
- "finding": "--"
+ "finding": "X-Cache-Status: HIT"
},
{
"id": "heartbleed",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -34816,7 +33898,7 @@
},
{
"id": "CCS",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -34825,7 +33907,7 @@
},
{
"id": "ticketbleed",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -34834,7 +33916,7 @@
},
{
"id": "ROBOT",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -34843,7 +33925,7 @@
},
{
"id": "secure_renego",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -34851,7 +33933,7 @@
},
{
"id": "secure_client_renego",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -34860,7 +33942,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -34869,16 +33951,16 @@
},
{
"id": "BREACH",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
- "severity": "OK",
+ "severity": "MEDIUM",
"cve": "CVE-2013-3587",
"cwe": "CWE-310",
- "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested"
+ "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested"
},
{
"id": "POODLE_SSL",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -34887,14 +33969,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -34903,7 +33985,7 @@
},
{
"id": "FREAK",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -34912,7 +33994,7 @@
},
{
"id": "DROWN",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -34921,16 +34003,16 @@
},
{
"id": "DROWN_hint",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D407BAC2C436CBD2F129C3B26D13D5192094BB18AEC9A2658E5BB2C812DAA431"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2919F7393F8A635EC521D86052D14F9FC465D555FAD21BE5CB06372C48F8EBF1"
},
{
"id": "LOGJAM",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -34939,7 +34021,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -34948,7 +34030,7 @@
},
{
"id": "BEAST",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -34957,7 +34039,7 @@
},
{
"id": "LUCKY13",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -34966,7 +34048,7 @@
},
{
"id": "winshock",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -34975,7 +34057,7 @@
},
{
"id": "RC4",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -34984,315 +34066,315 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "lvao.ademe.fr/148.253.75.120",
+ "ip": "lvao.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "A+"
@@ -35504,7 +34586,7 @@
"ip": "lvao.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "not supported"
+ "finding": "supported"
},
{
"id": "TLS_timestamp",
@@ -35567,7 +34649,7 @@
"ip": "lvao.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "0325632FEB24E5510701DD8926E8A4D30724"
+ "finding": "041261EAD3A34EBA7B584B9D8DAA5E0F06A9"
},
{
"id": "cert_serialNumberLen",
@@ -35581,21 +34663,21 @@
"ip": "lvao.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "6F6247D71C1C60543C8599E9C3E0BB666C5CE2F2"
+ "finding": "472EC1B5C7233A3C3983D3A12A98FFDAC64A3A56"
},
{
"id": "cert_fingerprintSHA256",
"ip": "lvao.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "D407BAC2C436CBD2F129C3B26D13D5192094BB18AEC9A2658E5BB2C812DAA431"
+ "finding": "2919F7393F8A635EC521D86052D14F9FC465D555FAD21BE5CB06372C48F8EBF1"
},
{
"id": "cert",
"ip": "lvao.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName",
@@ -35651,21 +34733,21 @@
"ip": "lvao.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
- "finding": "36 >= 30 days"
+ "finding": "61 >= 30 days"
},
{
"id": "cert_notBefore",
"ip": "lvao.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-03 14:32"
+ "finding": "2025-02-01 14:33"
},
{
"id": "cert_notAfter",
"ip": "lvao.ademe.fr/109.232.236.90",
"port": "443",
"severity": "OK",
- "finding": "2025-03-03 14:32"
+ "finding": "2025-05-02 14:33"
},
{
"id": "cert_extlifeSpan",
@@ -35798,21 +34880,21 @@
"ip": "lvao.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "301 Moved Permanently ('/')"
+ "finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
"ip": "lvao.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "0 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
"ip": "lvao.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "1737859624"
+ "finding": "1740882435"
},
{
"id": "HSTS_time",
@@ -35861,7 +34943,7 @@
"ip": "lvao.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "0 at '/' (30x detected, better try target URL of 30x)"
+ "finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
@@ -35891,13 +34973,20 @@
"severity": "INFO",
"finding": "strict-origin-when-cross-origin"
},
+ {
+ "id": "Cache-Control",
+ "ip": "lvao.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "max-age=900"
+ },
{
"id": "banner_reverseproxy",
"ip": "lvao.ademe.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
- "finding": "--"
+ "finding": "X-Cache-Status: HIT"
},
{
"id": "heartbleed",
@@ -35965,10 +35054,10 @@
"id": "BREACH",
"ip": "lvao.ademe.fr/109.232.236.90",
"port": "443",
- "severity": "OK",
+ "severity": "MEDIUM",
"cve": "CVE-2013-3587",
"cwe": "CWE-310",
- "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested"
+ "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested"
},
{
"id": "POODLE_SSL",
@@ -36020,7 +35109,7 @@
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D407BAC2C436CBD2F129C3B26D13D5192094BB18AEC9A2658E5BB2C812DAA431"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2919F7393F8A635EC521D86052D14F9FC465D555FAD21BE5CB06372C48F8EBF1"
},
{
"id": "LOGJAM",
@@ -36393,77 +35482,77 @@
},
{
"id": "service",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -36471,7 +35560,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -36479,7 +35568,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -36487,7 +35576,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -36495,7 +35584,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -36503,7 +35592,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -36511,491 +35600,498 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "61 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-03 14:32"
+ "finding": "2025-02-01 14:33"
},
{
"id": "cert_notAfter",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
- "finding": "2025-03-03 14:32"
+ "finding": "2025-05-02 14:33"
},
{
"id": "cert_extlifeSpan",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "http://r11.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "R11 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "R11 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "301 Moved Permanently ('/')"
+ "finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "0 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "1737859674"
+ "finding": "1740882488"
},
{
"id": "HSTS_time",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "0 at '/' (30x detected, better try target URL of 30x)"
+ "finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "ALLOWALL"
},
{
"id": "X-Content-Type-Options",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Cross-Origin-Opener-Policy",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "Referrer-Policy",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "strict-origin-when-cross-origin"
},
+ {
+ "id": "Cache-Control",
+ "ip": "lvao.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "max-age=900"
+ },
{
"id": "banner_reverseproxy",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
- "finding": "--"
+ "finding": "X-Cache-Status: HIT"
},
{
"id": "heartbleed",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -37004,7 +36100,7 @@
},
{
"id": "CCS",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -37013,7 +36109,7 @@
},
{
"id": "ticketbleed",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -37022,7 +36118,7 @@
},
{
"id": "ROBOT",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -37031,7 +36127,7 @@
},
{
"id": "secure_renego",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -37039,7 +36135,7 @@
},
{
"id": "secure_client_renego",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -37048,7 +36144,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -37057,16 +36153,16 @@
},
{
"id": "BREACH",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
- "severity": "OK",
+ "severity": "MEDIUM",
"cve": "CVE-2013-3587",
"cwe": "CWE-310",
- "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested"
+ "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested"
},
{
"id": "POODLE_SSL",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -37075,14 +36171,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -37091,7 +36187,7 @@
},
{
"id": "FREAK",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -37100,7 +36196,7 @@
},
{
"id": "DROWN",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -37109,16 +36205,16 @@
},
{
"id": "DROWN_hint",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D407BAC2C436CBD2F129C3B26D13D5192094BB18AEC9A2658E5BB2C812DAA431"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2919F7393F8A635EC521D86052D14F9FC465D555FAD21BE5CB06372C48F8EBF1"
},
{
"id": "LOGJAM",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -37127,7 +36223,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -37136,7 +36232,7 @@
},
{
"id": "BEAST",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -37145,7 +36241,7 @@
},
{
"id": "LUCKY13",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -37154,7 +36250,7 @@
},
{
"id": "winshock",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -37163,7 +36259,7 @@
},
{
"id": "RC4",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -37172,325 +36268,325 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "scanTime",
- "ip": "lvao.ademe.fr/5.104.101.30",
+ "ip": "lvao.ademe.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "204"
+ "finding": "218"
}
],
"thirdparties": {
@@ -37502,27 +36598,116 @@
"wappalyzer": {
"urls": {
"https://lvao.ademe.fr/": {
- "status": 301,
- "error": "net::ERR_BLOCKED_BY_CLIENT at https://lvao.ademe.fr/ (https://lvao.ademe.fr/)"
+ "status": 200
}
},
"technologies": [
{
- "slug": "hsts",
- "name": "HSTS",
- "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.",
+ "slug": "stimulus",
+ "name": "Stimulus",
+ "description": "A modest JavaScript framework for the HTML you already have.",
"confidence": 100,
"version": null,
- "icon": "default.svg",
- "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1",
+ "icon": "Stimulus.svg",
+ "website": "https://stimulusjs.org/",
"cpe": null,
"categories": [
{
- "id": 16,
- "slug": "security",
- "name": "Security"
- }
- ],
+ "id": 12,
+ "slug": "javascript-frameworks",
+ "name": "JavaScript frameworks"
+ }
+ ],
+ "rootPath": true
+ },
+ {
+ "slug": "turbo",
+ "name": "Turbo",
+ "description": "Turbo is a JavaScript framework for building fast web applications.",
+ "confidence": 100,
+ "version": null,
+ "icon": "Turbo.svg",
+ "website": "https://turbo.hotwired.dev/",
+ "cpe": null,
+ "categories": [
+ {
+ "id": 92,
+ "slug": "performance",
+ "name": "Performance"
+ }
+ ],
+ "rootPath": true
+ },
+ {
+ "slug": "matomo-analytics",
+ "name": "Matomo Analytics",
+ "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.",
+ "confidence": 100,
+ "version": null,
+ "icon": "Matomo.svg",
+ "website": "https://matomo.org",
+ "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*",
+ "categories": [
+ {
+ "id": 10,
+ "slug": "analytics",
+ "name": "Analytics"
+ }
+ ],
+ "rootPath": true
+ },
+ {
+ "slug": "hsts",
+ "name": "HSTS",
+ "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.",
+ "confidence": 100,
+ "version": null,
+ "icon": "default.svg",
+ "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1",
+ "cpe": null,
+ "categories": [
+ {
+ "id": 16,
+ "slug": "security",
+ "name": "Security"
+ }
+ ],
+ "rootPath": true
+ },
+ {
+ "slug": "pwa",
+ "name": "PWA",
+ "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.",
+ "confidence": 100,
+ "version": null,
+ "icon": "PWA.svg",
+ "website": "https://web.dev/progressive-web-apps/",
+ "cpe": null,
+ "categories": [
+ {
+ "id": 19,
+ "slug": "miscellaneous",
+ "name": "Miscellaneous"
+ }
+ ],
+ "rootPath": true
+ },
+ {
+ "slug": "open-graph",
+ "name": "Open Graph",
+ "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.",
+ "confidence": 100,
+ "version": null,
+ "icon": "Open Graph.png",
+ "website": "https://ogp.me",
+ "cpe": null,
+ "categories": [
+ {
+ "id": 19,
+ "slug": "miscellaneous",
+ "name": "Miscellaneous"
+ }
+ ],
"rootPath": true
}
]
@@ -37530,7 +36715,7 @@
"zap": {
"@programName": "ZAP",
"@version": "2.16.0",
- "@generated": "Sun, 26 Jan 2025 02:39:48",
+ "@generated": "Sun, 2 Mar 2025 02:23:19",
"site": [
{
"@name": "https://lvao.ademe.fr",
@@ -37545,6 +36730,13 @@
"riskdesc": "Medium (High)",
"desc": "Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.
"
},
+ {
+ "name": "X-Frame-Options Setting Malformed",
+ "riskcode": "2",
+ "confidence": "2",
+ "riskdesc": "Medium (Medium)",
+ "desc": "An X-Frame-Options header was present in the response but the value was not correctly set.
"
+ },
{
"name": "Insufficient Site Isolation Against Spectre Vulnerability",
"riskcode": "1",
@@ -37560,11 +36752,11 @@
"desc": "Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.
"
},
{
- "name": "Strict-Transport-Security Header Not Set",
+ "name": "X-Content-Type-Options Header Missing",
"riskcode": "1",
- "confidence": "3",
- "riskdesc": "Low (High)",
- "desc": "HTTP Strict Transport Security (HSTS) is a web security policy mechanism whereby a web server declares that complying user agents (such as a web browser) are to interact with it using only secure HTTPS connections (i.e. HTTP layered over TLS/SSL). HSTS is an IETF standards track protocol and is specified in RFC 6797.
"
+ "confidence": "2",
+ "riskdesc": "Low (Medium)",
+ "desc": "The Anti-MIME-Sniffing header X-Content-Type-Options was not set to 'nosniff'. This allows older versions of Internet Explorer and Chrome to perform MIME-sniffing on the response body, potentially causing the response body to be interpreted and displayed as a content type other than the declared content type. Current (early 2014) and legacy versions of Firefox will use the declared content type (if one is set), rather than performing MIME-sniffing.
"
},
{
"name": "Base64 Disclosure",
@@ -37573,6 +36765,13 @@
"riskdesc": "Informational (Medium)",
"desc": "Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).
"
},
+ {
+ "name": "Information Disclosure - Suspicious Comments",
+ "riskcode": "0",
+ "confidence": "1",
+ "riskdesc": "Informational (Low)",
+ "desc": "The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.
"
+ },
{
"name": "Modern Web Application",
"riskcode": "0",
@@ -37580,6 +36779,13 @@
"riskdesc": "Informational (Medium)",
"desc": "The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.
"
},
+ {
+ "name": "Non-Storable Content",
+ "riskcode": "0",
+ "confidence": "2",
+ "riskdesc": "Informational (Medium)",
+ "desc": "The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.
"
+ },
{
"name": "Re-examine Cache-control Directives",
"riskcode": "0",
@@ -37621,6 +36827,13 @@
"confidence": "2",
"riskdesc": "Informational (Medium)",
"desc": "The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.
"
+ },
+ {
+ "name": "User Controllable HTML Element Attribute (Potential XSS)",
+ "riskcode": "0",
+ "confidence": "1",
+ "riskdesc": "Informational (Low)",
+ "desc": "This check looks at user-supplied input in query string parameters and POST data to identify where certain HTML attribute values might be controlled. This provides hot-spot detection for XSS (cross-site scripting) that will require further review by a security analyst to determine exploitability.
"
}
]
}
@@ -37660,7 +36873,7 @@
"extracted-results": [
"quefairedemesobjets.osc-fr1.scalingo.io."
],
- "timestamp": "2025-01-26T02:27:59.394696317Z",
+ "timestamp": "2025-03-02T02:29:34.820121417Z",
"matcher-status": true
},
{
@@ -37695,79 +36908,299 @@
"type": "dns",
"host": "lvao.ademe.fr.",
"matched-at": "lvao.ademe.fr",
- "timestamp": "2025-01-26T02:27:59.407998037Z",
+ "timestamp": "2025-03-02T02:29:34.948099944Z",
"matcher-status": true
},
{
- "template": "http/miscellaneous/sitemap-detect.yaml",
- "template-url": "https://templates.nuclei.sh/public/sitemap-detect",
- "template-id": "sitemap-detect",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/sitemap-detect.yaml",
+ "template": "http/miscellaneous/form-detection.yaml",
+ "template-url": "https://templates.nuclei.sh/public/form-detection",
+ "template-id": "form-detection",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/form-detection.yaml",
"info": {
- "name": "Sitemap Detection",
+ "name": "Form Detection",
"author": [
- "houdinis"
+ "pdteam"
],
"tags": [
- "miscellaneous",
+ "form",
"misc",
- "generic",
- "sitemap"
+ "miscellaneous"
+ ],
+ "description": "A template to detect HTML Forms in page response.\n",
+ "reference": [
+ "https://github.com/dirtycoder0124/formcrawler"
],
- "description": "A sitemap is a file where you provide information about the pages, videos, and other files on your site, and the relationships between them.\n",
"severity": "info",
"metadata": {
- "google-query": "intext:\"sitemap\" filetype:txt,filetype:xml inurl:sitemap,inurl:\"/sitemap.xsd\" ext:xsd",
- "max-request": 3,
- "verified": true
+ "max-request": 1
}
},
"type": "http",
"host": "https://lvao.ademe.fr",
- "matched-at": "https://lvao.ademe.fr/sitemap.xml",
+ "matched-at": "https://lvao.ademe.fr",
"ip": "109.232.233.130",
- "timestamp": "2025-01-26T02:29:05.461858664Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lvao.ademe.fr/sitemap.xml'",
+ "timestamp": "2025-03-02T02:30:33.993034943Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lvao.ademe.fr'",
"matcher-status": true
},
{
- "template": "http/misconfiguration/missing-sri.yaml",
- "template-url": "https://templates.nuclei.sh/public/missing-sri",
- "template-id": "missing-sri",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/missing-sri.yaml",
+ "template": "http/misconfiguration/http-missing-security-headers.yaml",
+ "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
+ "template-id": "http-missing-security-headers",
+ "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
"info": {
- "name": "Missing Subresource Integrity",
+ "name": "HTTP Missing Security Headers",
"author": [
- "lucky0x0d",
- "pulsesecurity.co.nz",
- "sullo amarsct"
+ "socketz",
+ "geeknik",
+ "g4l1t0",
+ "convisoappsec",
+ "kurohost",
+ "dawid-czarnecki",
+ "forgedhallpass",
+ "jub0bs",
+ "userdehghani"
],
"tags": [
- "compliance",
- "js",
- "css",
- "sri",
- "misconfig"
+ "misconfig",
+ "headers",
+ "generic"
],
- "description": "Checks if external script and stylesheet tags in the HTML response are missing the Subresource Integrity (SRI) attribute.\n",
- "reference": [
- "https://cheatsheetseries.owasp.org/cheatsheets/third_party_javascript_management_cheat_sheet.html#subresource-integrity",
- "https://developer.mozilla.org/en-us/docs/web/security/subresource_integrity"
+ "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
+ "severity": "info",
+ "metadata": {
+ "max-request": 1
+ }
+ },
+ "matcher-name": "x-permitted-cross-domain-policies",
+ "type": "http",
+ "host": "https://lvao.ademe.fr",
+ "matched-at": "https://lvao.ademe.fr",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:30:39.669537385Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lvao.ademe.fr'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/misconfiguration/http-missing-security-headers.yaml",
+ "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
+ "template-id": "http-missing-security-headers",
+ "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "info": {
+ "name": "HTTP Missing Security Headers",
+ "author": [
+ "socketz",
+ "geeknik",
+ "g4l1t0",
+ "convisoappsec",
+ "kurohost",
+ "dawid-czarnecki",
+ "forgedhallpass",
+ "jub0bs",
+ "userdehghani"
+ ],
+ "tags": [
+ "misconfig",
+ "headers",
+ "generic"
],
+ "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
"severity": "info",
"metadata": {
"max-request": 1
}
},
+ "matcher-name": "clear-site-data",
"type": "http",
"host": "https://lvao.ademe.fr",
- "matched-at": "https://longuevieauxobjets.ademe.fr/lacarte/",
- "extracted-results": [
- "https://lvao.ademe.fr/static/carte.js"
- ],
+ "matched-at": "https://lvao.ademe.fr",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:30:39.669581938Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lvao.ademe.fr'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/misconfiguration/http-missing-security-headers.yaml",
+ "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
+ "template-id": "http-missing-security-headers",
+ "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "info": {
+ "name": "HTTP Missing Security Headers",
+ "author": [
+ "socketz",
+ "geeknik",
+ "g4l1t0",
+ "convisoappsec",
+ "kurohost",
+ "dawid-czarnecki",
+ "forgedhallpass",
+ "jub0bs",
+ "userdehghani"
+ ],
+ "tags": [
+ "misconfig",
+ "headers",
+ "generic"
+ ],
+ "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
+ "severity": "info",
+ "metadata": {
+ "max-request": 1
+ }
+ },
+ "matcher-name": "cross-origin-embedder-policy",
+ "type": "http",
+ "host": "https://lvao.ademe.fr",
+ "matched-at": "https://lvao.ademe.fr",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:30:39.669599922Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lvao.ademe.fr'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/misconfiguration/http-missing-security-headers.yaml",
+ "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
+ "template-id": "http-missing-security-headers",
+ "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "info": {
+ "name": "HTTP Missing Security Headers",
+ "author": [
+ "socketz",
+ "geeknik",
+ "g4l1t0",
+ "convisoappsec",
+ "kurohost",
+ "dawid-czarnecki",
+ "forgedhallpass",
+ "jub0bs",
+ "userdehghani"
+ ],
+ "tags": [
+ "misconfig",
+ "headers",
+ "generic"
+ ],
+ "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
+ "severity": "info",
+ "metadata": {
+ "max-request": 1
+ }
+ },
+ "matcher-name": "cross-origin-resource-policy",
+ "type": "http",
+ "host": "https://lvao.ademe.fr",
+ "matched-at": "https://lvao.ademe.fr",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:30:39.669614018Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lvao.ademe.fr'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/misconfiguration/http-missing-security-headers.yaml",
+ "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
+ "template-id": "http-missing-security-headers",
+ "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "info": {
+ "name": "HTTP Missing Security Headers",
+ "author": [
+ "socketz",
+ "geeknik",
+ "g4l1t0",
+ "convisoappsec",
+ "kurohost",
+ "dawid-czarnecki",
+ "forgedhallpass",
+ "jub0bs",
+ "userdehghani"
+ ],
+ "tags": [
+ "misconfig",
+ "headers",
+ "generic"
+ ],
+ "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
+ "severity": "info",
+ "metadata": {
+ "max-request": 1
+ }
+ },
+ "matcher-name": "content-security-policy",
+ "type": "http",
+ "host": "https://lvao.ademe.fr",
+ "matched-at": "https://lvao.ademe.fr",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:30:39.669634186Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lvao.ademe.fr'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/misconfiguration/http-missing-security-headers.yaml",
+ "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
+ "template-id": "http-missing-security-headers",
+ "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "info": {
+ "name": "HTTP Missing Security Headers",
+ "author": [
+ "socketz",
+ "geeknik",
+ "g4l1t0",
+ "convisoappsec",
+ "kurohost",
+ "dawid-czarnecki",
+ "forgedhallpass",
+ "jub0bs",
+ "userdehghani"
+ ],
+ "tags": [
+ "misconfig",
+ "headers",
+ "generic"
+ ],
+ "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
+ "severity": "info",
+ "metadata": {
+ "max-request": 1
+ }
+ },
+ "matcher-name": "permissions-policy",
+ "type": "http",
+ "host": "https://lvao.ademe.fr",
+ "matched-at": "https://lvao.ademe.fr",
+ "ip": "109.232.233.130",
+ "timestamp": "2025-03-02T02:30:39.669647861Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lvao.ademe.fr'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/miscellaneous/sitemap-detect.yaml",
+ "template-url": "https://templates.nuclei.sh/public/sitemap-detect",
+ "template-id": "sitemap-detect",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/sitemap-detect.yaml",
+ "info": {
+ "name": "Sitemap Detection",
+ "author": [
+ "houdinis"
+ ],
+ "tags": [
+ "miscellaneous",
+ "misc",
+ "generic",
+ "sitemap"
+ ],
+ "description": "A sitemap is a file where you provide information about the pages, videos, and other files on your site, and the relationships between them.\n",
+ "severity": "info",
+ "metadata": {
+ "google-query": "intext:\"sitemap\" filetype:txt,filetype:xml inurl:sitemap,inurl:\"/sitemap.xsd\" ext:xsd",
+ "max-request": 3,
+ "verified": true
+ }
+ },
+ "type": "http",
+ "host": "https://lvao.ademe.fr",
+ "matched-at": "https://lvao.ademe.fr/sitemap.xml",
"ip": "109.232.233.130",
- "timestamp": "2025-01-26T02:29:12.306378375Z",
- "curl-command": "curl -X 'GET' -d '' -H 'Host: lvao.ademe.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lvao.ademe.fr/'",
+ "timestamp": "2025-03-02T02:30:53.477893674Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lvao.ademe.fr/sitemap.xml'",
"matcher-status": true
},
{
@@ -37806,7 +37239,7 @@
"host": "https://lvao.ademe.fr",
"matched-at": "https://lvao.ademe.fr/",
"ip": "109.232.233.130",
- "timestamp": "2025-01-26T02:29:20.353427035Z",
+ "timestamp": "2025-03-02T02:31:11.446946766Z",
"curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: lvao.ademe.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lvao.ademe.fr/'",
"matcher-status": true
},
@@ -37837,7 +37270,7 @@
"Let's Encrypt"
],
"ip": "109.232.233.130",
- "timestamp": "2025-01-26T02:35:03.407598743Z",
+ "timestamp": "2025-03-02T02:36:58.186239942Z",
"matcher-status": true
},
{
@@ -37867,7 +37300,7 @@
"lvao.ademe.fr"
],
"ip": "109.232.233.130",
- "timestamp": "2025-01-26T02:35:03.407729256Z",
+ "timestamp": "2025-03-02T02:36:58.186362902Z",
"matcher-status": true
},
{
@@ -37898,7 +37331,7 @@
"tls12"
],
"ip": "109.232.233.130",
- "timestamp": "2025-01-26T02:35:04.936495204Z",
+ "timestamp": "2025-03-02T02:36:59.770543054Z",
"matcher-status": true
},
{
@@ -37929,18 +37362,16 @@
"tls13"
],
"ip": "109.232.233.130",
- "timestamp": "2025-01-26T02:35:05.14408314Z",
+ "timestamp": "2025-03-02T02:36:59.963037307Z",
"matcher-status": true
}
],
"lhr": [
{
"requestedUrl": "https://lvao.ademe.fr/",
- "finalUrl": "https://longuevieauxobjets.ademe.fr/lacarte/",
- "fetchTime": "2025-01-26T02:44:38.562Z",
- "runWarnings": [
- "The page may not be loading as expected because your test URL (https://lvao.ademe.fr/) was redirected to https://longuevieauxobjets.ademe.fr/lacarte/. Try testing the second URL directly."
- ],
+ "finalUrl": "https://lvao.ademe.fr/",
+ "fetchTime": "2025-03-02T02:23:35.291Z",
+ "runWarnings": [],
"categories": {
"performance": {
"title": "Performance",
@@ -37950,7 +37381,7 @@
"snapshot"
],
"id": "performance",
- "score": 0.8
+ "score": 0.79
},
"accessibility": {
"title": "Accessibility",
@@ -37971,7 +37402,7 @@
"snapshot"
],
"id": "best-practices",
- "score": 1
+ "score": 0.92
},
"seo": {
"title": "SEO",
@@ -37982,7 +37413,7 @@
"snapshot"
],
"id": "seo",
- "score": 0.9
+ "score": 0.98
},
"pwa": {
"title": "PWA",
@@ -37992,7 +37423,7 @@
"navigation"
],
"id": "pwa",
- "score": 0.4
+ "score": 0.7
}
},
"audits": {
@@ -38002,53 +37433,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 3269,
+ "numericValue": 3606,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 3269,
- "firstMeaningfulPaint": 3269,
- "largestContentfulPaint": 3390,
- "interactive": 3269,
- "speedIndex": 3645,
+ "firstContentfulPaint": 3606,
+ "firstMeaningfulPaint": 3606,
+ "largestContentfulPaint": 3960,
+ "interactive": 3606,
+ "speedIndex": 3606,
"totalBlockingTime": 0,
"maxPotentialFID": 16,
- "cumulativeLayoutShift": 0.16269595124986436,
- "cumulativeLayoutShiftMainFrame": 0.16269595124986436,
- "totalCumulativeLayoutShift": 0.16269595124986436,
+ "cumulativeLayoutShift": 0.007898439195421008,
+ "cumulativeLayoutShiftMainFrame": 0.007898439195421008,
+ "totalCumulativeLayoutShift": 0.01111958482530382,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 1169525541,
+ "observedTimeOriginTs": 381545660,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 1169525541,
- "observedFirstPaint": 1231,
- "observedFirstPaintTs": 1170756297,
- "observedFirstContentfulPaint": 1231,
- "observedFirstContentfulPaintTs": 1170756297,
- "observedFirstContentfulPaintAllFrames": 1231,
- "observedFirstContentfulPaintAllFramesTs": 1170756297,
- "observedFirstMeaningfulPaint": 1231,
- "observedFirstMeaningfulPaintTs": 1170756297,
- "observedLargestContentfulPaint": 1231,
- "observedLargestContentfulPaintTs": 1170756297,
- "observedLargestContentfulPaintAllFrames": 1231,
- "observedLargestContentfulPaintAllFramesTs": 1170756297,
- "observedTraceEnd": 6298,
- "observedTraceEndTs": 1175823541,
- "observedLoad": 3992,
- "observedLoadTs": 1173517612,
- "observedDomContentLoaded": 1294,
- "observedDomContentLoadedTs": 1170819642,
- "observedCumulativeLayoutShift": 0.16269595124986436,
- "observedCumulativeLayoutShiftMainFrame": 0.16269595124986436,
- "observedTotalCumulativeLayoutShift": 0.16269595124986436,
- "observedFirstVisualChange": 1244,
- "observedFirstVisualChangeTs": 1170769541,
- "observedLastVisualChange": 1394,
- "observedLastVisualChangeTs": 1170919541,
- "observedSpeedIndex": 1264,
- "observedSpeedIndexTs": 1170790000
+ "observedNavigationStartTs": 381545660,
+ "observedFirstPaint": 812,
+ "observedFirstPaintTs": 382357160,
+ "observedFirstContentfulPaint": 812,
+ "observedFirstContentfulPaintTs": 382357160,
+ "observedFirstContentfulPaintAllFrames": 812,
+ "observedFirstContentfulPaintAllFramesTs": 382357160,
+ "observedFirstMeaningfulPaint": 812,
+ "observedFirstMeaningfulPaintTs": 382357160,
+ "observedLargestContentfulPaint": 812,
+ "observedLargestContentfulPaintTs": 382357160,
+ "observedLargestContentfulPaintAllFrames": 812,
+ "observedLargestContentfulPaintAllFramesTs": 382357160,
+ "observedTraceEnd": 4489,
+ "observedTraceEndTs": 386034558,
+ "observedLoad": 1310,
+ "observedLoadTs": 382855321,
+ "observedDomContentLoaded": 842,
+ "observedDomContentLoadedTs": 382387418,
+ "observedCumulativeLayoutShift": 0.007898439195421008,
+ "observedCumulativeLayoutShiftMainFrame": 0.007898439195421008,
+ "observedTotalCumulativeLayoutShift": 0.01111958482530382,
+ "observedFirstVisualChange": 822,
+ "observedFirstVisualChangeTs": 382367660,
+ "observedLastVisualChange": 4488,
+ "observedLastVisualChangeTs": 386033660,
+ "observedSpeedIndex": 879,
+ "observedSpeedIndexTs": 382424369
},
{
"lcpInvalidated": false
@@ -38066,23 +37497,23 @@
"type": "debugdata",
"items": [
{
- "numRequests": 73,
- "numScripts": 7,
- "numStylesheets": 5,
- "numFonts": 8,
- "numTasks": 38,
- "numTasksOver10ms": 0,
+ "numRequests": 38,
+ "numScripts": 6,
+ "numStylesheets": 4,
+ "numFonts": 3,
+ "numTasks": 32,
+ "numTasksOver10ms": 1,
"numTasksOver25ms": 0,
"numTasksOver50ms": 0,
"numTasksOver100ms": 0,
"numTasksOver500ms": 0,
- "rtt": 0,
- "throughput": 9817235.740824467,
- "maxRtt": 93.90699999999998,
- "maxServerLatency": 249.96999999999997,
- "totalByteWeight": 2583351,
- "totalTaskTime": 3.686999999999998,
- "mainDocumentTransferSize": 8277
+ "rtt": 2.167,
+ "throughput": 13413741.949734816,
+ "maxRtt": 95.00500000000001,
+ "maxServerLatency": 36.633000000000024,
+ "totalByteWeight": 751634,
+ "totalTaskTime": 23.121000000000002,
+ "mainDocumentTransferSize": 60529
}
]
}
@@ -38107,8 +37538,8 @@
"uri": "budget"
},
"declaration-a11y": {
- "mention": "Accessibilité : non conforme",
- "declarationUrl": "https://lvao.ademe.fr/accessibilite/"
+ "mention": "Accessibilité : partiellement conforme",
+ "declarationUrl": "https://lvao.ademe.fr/assistant/accessibilite"
},
"declaration-rgpd": [
{
@@ -38123,7 +37554,7 @@
"éditeur (ou) édité par (ou) editeur (ou) edité par"
],
"missingTrackers": [],
- "declarationUrl": "https://lvao.ademe.fr/mentions-legales/"
+ "declarationUrl": "https://lvao.ademe.fr/assistant/mentions-legales"
},
{
"slug": "pc",
@@ -38137,7 +37568,7 @@
"sous-traitant (ou) sous traitant"
],
"missingTrackers": [],
- "declarationUrl": "https://lvao.ademe.fr/donnees-personnelles/"
+ "declarationUrl": "https://lvao.ademe.fr/assistant/donnees-personnelles"
}
],
"betagouv": {
@@ -38206,451 +37637,219 @@
"width": 1920,
"height": 1080,
"url": "https://lvao.ademe.fr",
- "size": 3064.933,
- "nodes": 274,
- "requests": 78,
- "grade": "C",
- "score": 59,
- "ges": 1.82,
- "water": 2.73,
+ "size": 1140.872,
+ "nodes": 254,
+ "requests": 35,
+ "grade": "B",
+ "score": 75,
+ "ges": 1.5,
+ "water": 2.25,
"ecoindex_version": "5.4.2",
- "date": "2025-01-26 02:41:08.433597",
- "page_type": "article"
+ "date": "2025-03-02 02:20:48.488515",
+ "page_type": null
}
],
"sonarcloud": [],
"dsfr": {
- "detected": true
+ "detected": false
},
"summary": {
"404": "A+",
"httpGrade": "C",
- "apdex": 0.96,
- "apdexGrade": "E",
+ "apdex": 1,
+ "apdexGrade": "A",
"uptime": 100,
"uptimeGrade": "A",
+ "nmapGrade": "A",
+ "nmapOpenPortsCount": 2,
+ "nmapOpenPortsGrade": "A",
"dependabotGrade": "C",
- "dependabotCount": 10,
- "codescanCount": 1,
- "codescanGrade": "D",
- "testsslExpireSoon": true,
- "testsslExpireDate": "2025-03-03T14:32:00.000Z",
+ "dependabotCount": 11,
+ "codescanCount": 0,
+ "codescanGrade": "A",
+ "testsslExpireSoon": false,
+ "testsslExpireDate": "2025-05-02T14:33:00.000Z",
"testsslGrade": "A+",
"cookiesGrade": null,
"cookiesCount": null,
"trackersGrade": null,
"trackersCount": null,
- "zapCount": 4,
+ "zapCount": 5,
"zapGrade": "D",
- "lighthouse_performance": 0.8,
+ "lighthouse_performance": 0.79,
"lighthouse_performanceGrade": "B",
"lighthouse_accessibility": 0.99,
"lighthouse_accessibilityGrade": "A",
- "lighthouse_best-practices": 1,
+ "lighthouse_best-practices": 0.92,
"lighthouse_best-practicesGrade": "A",
- "lighthouse_seo": 0.9,
+ "lighthouse_seo": 0.98,
"lighthouse_seoGrade": "A",
- "lighthouse_pwa": 0.4,
- "lighthouse_pwaGrade": "D",
+ "lighthouse_pwa": 0.7,
+ "lighthouse_pwaGrade": "B",
"statsGrade": "A",
"githubRepositoryGrade": "A",
"budgetPageGrade": "A",
- "declaration-a11y": "C",
+ "declaration-a11y": "B",
"declaration-rgpd-ml": "D",
"declaration-rgpd-pc": "D",
- "ecoindexGrade": "C",
- "dsfrGrade": "A"
+ "ecoindexGrade": "B",
+ "dsfrGrade": "F"
}
},
{
- "404": [
- {
- "url": {
- "protocol": "https:",
- "slashes": true,
- "auth": null,
- "host": "quefairedemesdechets.ademe.fr",
- "port": null,
- "hostname": "quefairedemesdechets.ademe.fr",
- "hash": null,
- "search": null,
- "query": null,
- "pathname": "/dechet/medicaments/opensearch.xml",
- "path": "/dechet/medicaments/opensearch.xml",
- "href": "https://quefairedemesdechets.ademe.fr/dechet/medicaments/opensearch.xml"
- },
- "link": "https://quefairedemesdechets.ademe.fr/dechet/medicaments/opensearch.xml",
- "line": "https://quefairedemesdechets.ademe.fr/dechet/medicaments/opensearch.xml",
- "broken": true
+ "404": [],
+ "url": "https://quefairedemesdechets.ademe.fr",
+ "category": "startup",
+ "betaId": "longuevieauxobjets",
+ "tags": [
+ "app",
+ "production"
+ ],
+ "repositories": [
+ "incubateur-ademe/quefairedemesdechets"
+ ],
+ "http": {
+ "scan": {
+ "algorithmVersion": 4,
+ "grade": "C",
+ "error": null,
+ "score": 55,
+ "statusCode": 200,
+ "testsFailed": 2,
+ "testsPassed": 8,
+ "testsQuantity": 10,
+ "responseHeaders": {
+ "date": "Sun, 02 Mar 2025 02:39:32 GMT",
+ "content-type": "text/html; charset=utf-8",
+ "transfer-encoding": "chunked",
+ "connection": "close",
+ "x-request-id": "4f8532cd-c254-4874-a54c-6e57eb884186",
+ "vary": "Accept-Encoding, logged-in, iframe, Cookie, origin",
+ "cache-control": "max-age=900",
+ "x-frame-options": "ALLOWALL",
+ "x-content-type-options": "nosniff",
+ "referrer-policy": "strict-origin-when-cross-origin",
+ "cross-origin-opener-policy": "same-origin",
+ "x-cache-status": "HIT",
+ "strict-transport-security": "max-age=31536000"
+ }
},
- {
- "url": {
- "protocol": "https:",
- "slashes": true,
- "auth": null,
- "host": "quefairedemesdechets.ademe.fr",
- "port": null,
- "hostname": "quefairedemesdechets.ademe.fr",
- "hash": null,
- "search": null,
- "query": null,
- "pathname": "/dechet/aliments-compostables/opensearch.xml",
- "path": "/dechet/aliments-compostables/opensearch.xml",
- "href": "https://quefairedemesdechets.ademe.fr/dechet/aliments-compostables/opensearch.xml"
+ "tests": {
+ "content-security-policy": {
+ "expectation": "csp-implemented-with-no-unsafe",
+ "pass": false,
+ "result": "csp-not-implemented",
+ "scoreModifier": -25,
+ "data": null,
+ "http": false,
+ "meta": false,
+ "policy": null,
+ "numPolicies": 0
},
- "link": "https://quefairedemesdechets.ademe.fr/dechet/aliments-compostables/opensearch.xml",
- "line": "https://quefairedemesdechets.ademe.fr/dechet/aliments-compostables/opensearch.xml",
- "broken": true
- },
- {
- "url": {
- "protocol": "https:",
- "slashes": true,
- "auth": null,
- "host": "quefairedemesdechets.ademe.fr",
- "port": null,
- "hostname": "quefairedemesdechets.ademe.fr",
- "hash": null,
- "search": null,
- "query": null,
- "pathname": "/accessibilite/opensearch.xml",
- "path": "/accessibilite/opensearch.xml",
- "href": "https://quefairedemesdechets.ademe.fr/accessibilite/opensearch.xml"
+ "cookies": {
+ "expectation": "cookies-secure-with-httponly-sessions",
+ "pass": true,
+ "result": "cookies-not-found",
+ "scoreModifier": 0,
+ "data": null,
+ "sameSite": false
},
- "link": "https://quefairedemesdechets.ademe.fr/accessibilite/opensearch.xml",
- "line": "https://quefairedemesdechets.ademe.fr/accessibilite/opensearch.xml",
- "broken": true
- },
- {
- "url": {
- "protocol": "https:",
- "slashes": true,
- "auth": null,
- "host": "quefairedemesdechets.ademe.fr",
- "port": null,
- "hostname": "quefairedemesdechets.ademe.fr",
- "hash": null,
- "search": null,
- "query": null,
- "pathname": "/opensearch.xml",
- "path": "/opensearch.xml",
- "href": "https://quefairedemesdechets.ademe.fr/opensearch.xml"
- },
- "link": "https://quefairedemesdechets.ademe.fr/opensearch.xml",
- "line": "https://quefairedemesdechets.ademe.fr/opensearch.xml",
- "broken": true
- },
- {
- "url": {
- "protocol": "https:",
- "slashes": true,
- "auth": null,
- "host": "quefairedemesdechets.ademe.fr",
- "port": null,
- "hostname": "quefairedemesdechets.ademe.fr",
- "hash": null,
- "search": null,
- "query": null,
- "pathname": "/dechet/chaussures/opensearch.xml",
- "path": "/dechet/chaussures/opensearch.xml",
- "href": "https://quefairedemesdechets.ademe.fr/dechet/chaussures/opensearch.xml"
- },
- "link": "https://quefairedemesdechets.ademe.fr/dechet/chaussures/opensearch.xml",
- "line": "https://quefairedemesdechets.ademe.fr/dechet/chaussures/opensearch.xml",
- "broken": true
- },
- {
- "url": {
- "protocol": "https:",
- "slashes": true,
- "auth": null,
- "host": "quefairedemesdechets.ademe.fr",
- "port": null,
- "hostname": "quefairedemesdechets.ademe.fr",
- "hash": null,
- "search": null,
- "query": null,
- "pathname": "/dechet/pot-de-yaourt-en-plastique/opensearch.xml",
- "path": "/dechet/pot-de-yaourt-en-plastique/opensearch.xml",
- "href": "https://quefairedemesdechets.ademe.fr/dechet/pot-de-yaourt-en-plastique/opensearch.xml"
- },
- "link": "https://quefairedemesdechets.ademe.fr/dechet/pot-de-yaourt-en-plastique/opensearch.xml",
- "line": "https://quefairedemesdechets.ademe.fr/dechet/pot-de-yaourt-en-plastique/opensearch.xml",
- "broken": true
- },
- {
- "url": {
- "protocol": "https:",
- "slashes": true,
- "auth": null,
- "host": "quefairedemesdechets.ademe.fr",
- "port": null,
- "hostname": "quefairedemesdechets.ademe.fr",
- "hash": null,
- "search": null,
- "query": null,
- "pathname": "/dechet/livre/opensearch.xml",
- "path": "/dechet/livre/opensearch.xml",
- "href": "https://quefairedemesdechets.ademe.fr/dechet/livre/opensearch.xml"
- },
- "link": "https://quefairedemesdechets.ademe.fr/dechet/livre/opensearch.xml",
- "line": "https://quefairedemesdechets.ademe.fr/dechet/livre/opensearch.xml",
- "broken": true
- },
- {
- "url": {
- "protocol": "https:",
- "slashes": true,
- "auth": null,
- "host": "quefairedemesdechets.ademe.fr",
- "port": null,
- "hostname": "quefairedemesdechets.ademe.fr",
- "hash": null,
- "search": null,
- "query": null,
- "pathname": "/dechet/lunettes/opensearch.xml",
- "path": "/dechet/lunettes/opensearch.xml",
- "href": "https://quefairedemesdechets.ademe.fr/dechet/lunettes/opensearch.xml"
- },
- "link": "https://quefairedemesdechets.ademe.fr/dechet/lunettes/opensearch.xml",
- "line": "https://quefairedemesdechets.ademe.fr/dechet/lunettes/opensearch.xml",
- "broken": true
- },
- {
- "url": {
- "protocol": "https:",
- "slashes": true,
- "auth": null,
- "host": "quefairedemesdechets.ademe.fr",
- "port": null,
- "hostname": "quefairedemesdechets.ademe.fr",
- "hash": null,
- "search": null,
- "query": null,
- "pathname": "/dechet/capsules-de-cafe-ou-de-the/opensearch.xml",
- "path": "/dechet/capsules-de-cafe-ou-de-the/opensearch.xml",
- "href": "https://quefairedemesdechets.ademe.fr/dechet/capsules-de-cafe-ou-de-the/opensearch.xml"
- },
- "link": "https://quefairedemesdechets.ademe.fr/dechet/capsules-de-cafe-ou-de-the/opensearch.xml",
- "line": "https://quefairedemesdechets.ademe.fr/dechet/capsules-de-cafe-ou-de-the/opensearch.xml",
- "broken": true
- }
- ],
- "url": "https://quefairedemesdechets.ademe.fr",
- "category": "startup",
- "betaId": "longuevieauxobjets",
- "tags": [
- "app",
- "production"
- ],
- "repositories": [
- "incubateur-ademe/quefairedemesdechets"
- ],
- "http": {
- "url": "https://quefairedemesdechets.ademe.fr",
- "algorithm_version": 3,
- "end_time": "Sun, 20 Oct 2024 02:57:05 GMT",
- "grade": "B+",
- "hidden": false,
- "likelihood_indicator": "MEDIUM",
- "response_headers": {
- "Accept-Ranges": "bytes",
- "Age": "0",
- "Cache-Control": "public,max-age=0,must-revalidate",
- "Cache-Status": "\"Netlify Edge\"; fwd=miss",
- "Content-Encoding": "gzip",
- "Content-Security-Policy": "frame-ancestors *;",
- "Content-Type": "text/html; charset=UTF-8",
- "Date": "Sun, 20 Oct 2024 02:57:04 GMT",
- "Etag": "\"ce3b6b93f17a5b4836da26200a963c57-ssl-df\"",
- "Referrer-Policy": "same-origin",
- "Server": "Netlify",
- "Strict-Transport-Security": "max-age=31536000",
- "Transfer-Encoding": "chunked",
- "Vary": "Accept-Encoding",
- "X-Content-Type-Options": "nosniff",
- "X-Frame-Options": "DENY",
- "X-Nf-Request-Id": "01JAKXPQWEZ7FCM527BBQG4AM2",
- "X-Xss-Protection": "1; mode=block"
- },
- "scan_id": 57048351,
- "score": 80,
- "start_time": "Sun, 20 Oct 2024 02:57:04 GMT",
- "state": "FINISHED",
- "status_code": 200,
- "tests_failed": 1,
- "tests_passed": 9,
- "tests_quantity": 10,
- "details": {
- "content-security-policy": {
- "expectation": "csp-implemented-with-no-unsafe",
- "name": "content-security-policy",
- "output": {
- "data": {
- "frame-ancestors": [
- "*"
- ]
- },
- "http": true,
- "meta": false,
- "numPolicies": 1,
- "policy": {
- "antiClickjacking": false,
- "defaultNone": false,
- "insecureBaseUri": true,
- "insecureFormAction": true,
- "insecureSchemeActive": false,
- "insecureSchemePassive": false,
- "strictDynamic": false,
- "unsafeEval": false,
- "unsafeInline": true,
- "unsafeInlineStyle": true,
- "unsafeObjects": true
- }
- },
- "pass": false,
- "result": "csp-implemented-with-unsafe-inline",
- "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.",
- "score_modifier": -20
- },
- "cookies": {
- "expectation": "cookies-secure-with-httponly-sessions",
- "name": "cookies",
- "output": {
- "data": null,
- "sameSite": null
- },
- "pass": true,
- "result": "cookies-not-found",
- "score_description": "No cookies detected",
- "score_modifier": 0
- },
- "cross-origin-resource-sharing": {
- "expectation": "cross-origin-resource-sharing-not-implemented",
- "name": "cross-origin-resource-sharing",
- "output": {
- "data": {
- "acao": null,
- "clientaccesspolicy": null,
- "crossdomain": null
- }
- },
- "pass": true,
- "result": "cross-origin-resource-sharing-not-implemented",
- "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers",
- "score_modifier": 0
+ "cross-origin-resource-sharing": {
+ "expectation": "cross-origin-resource-sharing-not-implemented",
+ "pass": true,
+ "result": "cross-origin-resource-sharing-not-implemented",
+ "scoreModifier": 0,
+ "data": null
},
"redirection": {
"expectation": "redirection-to-https",
- "name": "redirection",
- "output": {
- "destination": "https://quefairedemesdechets.ademe.fr/",
- "redirects": true,
- "route": [
- "http://quefairedemesdechets.ademe.fr/",
- "https://quefairedemesdechets.ademe.fr/"
- ],
- "status_code": 200
- },
"pass": true,
"result": "redirection-to-https",
- "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "destination": "https://quefairedemesdechets.ademe.fr/",
+ "redirects": true,
+ "route": [
+ "http://quefairedemesdechets.ademe.fr/",
+ "https://quefairedemesdechets.ademe.fr/"
+ ],
+ "statusCode": 200
},
"referrer-policy": {
"expectation": "referrer-policy-private",
- "name": "referrer-policy",
- "output": {
- "data": "same-origin",
- "http": true,
- "meta": false
- },
"pass": true,
"result": "referrer-policy-private",
- "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"",
- "score_modifier": 5
+ "scoreModifier": 5,
+ "data": "strict-origin-when-cross-origin",
+ "http": true,
+ "meta": false
},
"strict-transport-security": {
"expectation": "hsts-implemented-max-age-at-least-six-months",
- "name": "strict-transport-security",
- "output": {
- "data": "max-age=31536000",
- "includeSubDomains": false,
- "max-age": 31536000,
- "preload": false,
- "preloaded": false
- },
"pass": true,
"result": "hsts-implemented-max-age-at-least-six-months",
- "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "max-age=31536000",
+ "includeSubDomains": false,
+ "maxAge": 31536000,
+ "preload": false,
+ "preloaded": false
},
"subresource-integrity": {
"expectation": "sri-implemented-and-external-scripts-loaded-securely",
- "name": "subresource-integrity",
- "output": {
- "data": {
- "https://cdnjs.cloudflare.com/ajax/libs/iframe-resizer/4.3.2/iframeResizer.contentWindow.min.js": {
- "crossorigin": "anonymous",
- "integrity": "sha512-14SY6teTzhrLWeL55Q4uCyxr6GQOxF3pEoMxo2mBxXwPRikdMtzKMYWy2B5Lqjr6PHHoGOxZgPaxUYKQrSmu0A=="
- }
- }
- },
"pass": true,
- "result": "sri-implemented-and-external-scripts-loaded-securely",
- "score_description": "Subresource Integrity (SRI) is implemented and all scripts are loaded securely",
- "score_modifier": 5
+ "result": "sri-implemented-and-all-scripts-loaded-securely",
+ "scoreModifier": 5,
+ "data": {}
},
"x-content-type-options": {
"expectation": "x-content-type-options-nosniff",
- "name": "x-content-type-options",
- "output": {
- "data": "nosniff"
- },
"pass": true,
"result": "x-content-type-options-nosniff",
- "score_description": "X-Content-Type-Options header set to \"nosniff\"",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "nosniff"
},
"x-frame-options": {
"expectation": "x-frame-options-sameorigin-or-deny",
- "name": "x-frame-options",
- "output": {
- "data": "DENY"
- },
- "pass": true,
- "result": "x-frame-options-implemented-via-csp",
- "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive",
- "score_modifier": 5
- },
- "x-xss-protection": {
- "expectation": "x-xss-protection-disabled",
- "name": "x-xss-protection",
- "output": {
- "data": "1; mode=block"
- },
+ "pass": false,
+ "result": "x-frame-options-header-invalid",
+ "scoreModifier": -20,
+ "data": "ALLOWALL"
+ },
+ "cross-origin-resource-policy": {
+ "expectation": "corp-implemented-with-same-site",
"pass": true,
- "result": "x-xss-protection-enabled-mode-block",
- "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"",
- "score_modifier": 0
+ "result": "corp-not-implemented",
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
}
}
},
"updownio": {
"token": "srvu",
"url": "https://quefairedemesdechets.ademe.fr",
+ "type": "https",
"alias": "Longue Vie Aux Objets - Que Faire De Mes Déchets",
- "last_status": 200,
"uptime": 100,
"down": false,
"down_since": null,
- "up_since": "2024-12-10T01:45:54Z",
+ "up_since": "2025-02-11T15:36:13Z",
"error": null,
"period": 300,
- "apdex_t": 0.5,
"string_match": "",
"enabled": true,
"published": true,
+ "recipients": [
+ "email:1558568615",
+ "email:1520458361"
+ ],
+ "last_check_at": "2025-03-02T02:56:19Z",
+ "next_check_at": "2025-03-02T03:01:17Z",
+ "created_at": "2024-06-27T10:03:33Z",
+ "mute_until": null,
+ "last_status": 200,
+ "apdex_t": 0.5,
"disabled_locations": [
"lan",
"mia",
@@ -38659,21 +37858,13 @@
"tok",
"syd"
],
- "recipients": [
- "email:1558568615",
- "email:1520458361"
- ],
- "last_check_at": "2025-01-26T02:44:46Z",
- "next_check_at": "2025-01-26T02:49:44Z",
- "created_at": "2024-06-27T10:03:33Z",
- "mute_until": null,
- "favicon_url": "https://quefairedemesdechets.ademe.fr/favicon-32x32.png?v=8ef53b602d6760e0b8742df3104f377e",
"custom_headers": {},
+ "favicon_url": "https://quefairedemesdechets.ademe.fr/static/favicon/favicon.24fa95135437.ico",
"http_verb": "GET/HEAD",
"http_body": "",
"ssl": {
- "tested_at": "2025-01-26T02:44:46Z",
- "expires_at": "2025-03-03T10:03:40Z",
+ "tested_at": "2025-03-02T02:46:24Z",
+ "expires_at": "2025-04-29T16:12:41Z",
"valid": true,
"error": null
},
@@ -38681,17 +37872,38 @@
"apdex": 1,
"timings": {
"redirect": 0,
- "namelookup": 24,
- "connection": 14,
- "handshake": 21,
- "response": 20,
- "total": 78
+ "namelookup": 12,
+ "connection": 22,
+ "handshake": 27,
+ "response": 25,
+ "total": 86
}
},
"uptimeGrade": "A",
"apdexGrade": "A"
},
- "nmap": null,
+ "nmap": {
+ "host": "quefairedemesdechets.ademe.fr",
+ "protocol": "tcp",
+ "closed_ports": "998",
+ "open_ports": [
+ {
+ "service": {
+ "name": "http",
+ "id": "80",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "https",
+ "id": "443",
+ "vulnerabilities": []
+ }
+ }
+ ],
+ "grade": "A"
+ },
"dependabot": {
"totalCount": 13,
"grade": "D",
@@ -39329,77 +38541,2279 @@
"testssl": [
{
"id": "service",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "HTTP"
+ },
+ {
+ "id": "pre_128cipher",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No 128 cipher limit bug"
+ },
+ {
+ "id": "SSLv2",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "not offered"
+ },
+ {
+ "id": "SSLv3",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "not offered"
+ },
+ {
+ "id": "TLS1",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "not offered"
+ },
+ {
+ "id": "TLS1_1",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "not offered"
+ },
+ {
+ "id": "TLS1_2",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "offered"
+ },
+ {
+ "id": "TLS1_3",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "offered with final"
+ },
+ {
+ "id": "ALPN_HTTP2",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "h2"
+ },
+ {
+ "id": "ALPN",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "http/1.1"
+ },
+ {
+ "id": "cipherlist_NULL",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cwe": "CWE-327",
+ "finding": "not offered"
+ },
+ {
+ "id": "cipherlist_aNULL",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cwe": "CWE-327",
+ "finding": "not offered"
+ },
+ {
+ "id": "cipherlist_EXPORT",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cwe": "CWE-327",
+ "finding": "not offered"
+ },
+ {
+ "id": "cipherlist_LOW",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cwe": "CWE-327",
+ "finding": "not offered"
+ },
+ {
+ "id": "cipherlist_3DES_IDEA",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "cwe": "CWE-310",
+ "finding": "not offered"
+ },
+ {
+ "id": "cipherlist_OBSOLETED",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "cwe": "CWE-310",
+ "finding": "not offered"
+ },
+ {
+ "id": "cipherlist_STRONG_NOFS",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "not offered"
+ },
+ {
+ "id": "cipherlist_STRONG_FS",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "offered"
+ },
+ {
+ "id": "cipher_order-tls1_2",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "server"
+ },
+ {
+ "id": "cipherorder_TLSv1_2",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "cipher_order",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "server"
+ },
+ {
+ "id": "FS",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "offered"
+ },
+ {
+ "id": "FS_ciphers",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "FS_ECDHE_curves",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "prime256v1 secp384r1 secp521r1"
+ },
+ {
+ "id": "TLS_extensions",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
+ },
+ {
+ "id": "TLS_session_ticket",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "valid for 300 seconds only (= 30 days"
+ },
+ {
+ "id": "cert_notBefore",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "2025-01-29 16:12"
+ },
+ {
+ "id": "cert_notAfter",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "2025-04-29 16:12"
+ },
+ {
+ "id": "cert_extlifeSpan",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "certificate has no extended life time according to browser forum"
+ },
+ {
+ "id": "cert_eTLS",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "not present"
+ },
+ {
+ "id": "cert_crlDistributionPoints",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "--"
+ },
+ {
+ "id": "cert_ocspURL",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "http://r10.o.lencr.org"
+ },
+ {
+ "id": "OCSP_stapling",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "LOW",
+ "finding": "not offered"
+ },
+ {
+ "id": "cert_mustStapleExtension",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "--"
+ },
+ {
+ "id": "DNS_CAArecord",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "LOW",
+ "finding": "--"
+ },
+ {
+ "id": "certificate_transparency",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "yes (certificate extension)"
+ },
+ {
+ "id": "certs_countServer",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "2"
+ },
+ {
+ "id": "certs_list_ordering_problem",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "no"
+ },
+ {
+ "id": "cert_caIssuers",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "R10 (Let's Encrypt from US)"
+ },
+ {
+ "id": "intermediate_cert <#1>",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----"
+ },
+ {
+ "id": "intermediate_cert_fingerprintSHA256 <#1>",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
+ },
+ {
+ "id": "intermediate_cert_notBefore <#1>",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "2024-03-13 00:00"
+ },
+ {
+ "id": "intermediate_cert_notAfter <#1>",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "2027-03-12 23:59"
+ },
+ {
+ "id": "intermediate_cert_expiration <#1>",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "ok > 40 days"
+ },
+ {
+ "id": "intermediate_cert_chain <#1>",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "R10 <-- ISRG Root X1"
+ },
+ {
+ "id": "intermediate_cert_badOCSP",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "intermediate certificate(s) is/are ok"
+ },
+ {
+ "id": "HTTP_status_code",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "200 OK ('/')"
+ },
+ {
+ "id": "HTTP_clock_skew",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "0 seconds from localtime"
+ },
+ {
+ "id": "HTTP_headerTime",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "1740883294"
+ },
+ {
+ "id": "HSTS_time",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "365 days (=31536000 seconds) > 15552000 seconds"
+ },
+ {
+ "id": "HSTS_subdomains",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "only for this domain"
+ },
+ {
+ "id": "HSTS_preload",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "domain is NOT marked for preloading"
+ },
+ {
+ "id": "HPKP",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No support for HTTP Public Key Pinning"
+ },
+ {
+ "id": "banner_server",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No Server banner line in header, interesting!"
+ },
+ {
+ "id": "banner_application",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No application banner found"
+ },
+ {
+ "id": "cookie_count",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "0 at '/'"
+ },
+ {
+ "id": "X-Frame-Options",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "ALLOWALL"
+ },
+ {
+ "id": "X-Content-Type-Options",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "nosniff"
+ },
+ {
+ "id": "Cross-Origin-Opener-Policy",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "same-origin"
+ },
+ {
+ "id": "Referrer-Policy",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "strict-origin-when-cross-origin"
+ },
+ {
+ "id": "Cache-Control",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "max-age=900"
+ },
+ {
+ "id": "banner_reverseproxy",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "cwe": "CWE-200",
+ "finding": "X-Cache-Status: HIT"
+ },
+ {
+ "id": "heartbleed",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2014-0160",
+ "cwe": "CWE-119",
+ "finding": "not vulnerable, no heartbeat extension"
+ },
+ {
+ "id": "CCS",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2014-0224",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "ticketbleed",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2016-9244",
+ "cwe": "CWE-200",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "ROBOT",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
+ "cwe": "CWE-203",
+ "finding": "not vulnerable, no RSA key transport cipher"
+ },
+ {
+ "id": "secure_renego",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cwe": "CWE-310",
+ "finding": "supported"
+ },
+ {
+ "id": "secure_client_renego",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2011-1473",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "CRIME_TLS",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2012-4929",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "BREACH",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "MEDIUM",
+ "cve": "CVE-2013-3587",
+ "cwe": "CWE-310",
+ "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested"
+ },
+ {
+ "id": "POODLE_SSL",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2014-3566",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable, no SSLv3"
+ },
+ {
+ "id": "fallback_SCSV",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "no protocol below TLS 1.2 offered"
+ },
+ {
+ "id": "SWEET32",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2016-2183 CVE-2016-6329",
+ "cwe": "CWE-327",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "FREAK",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2015-0204",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "DROWN",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2016-0800 CVE-2016-0703",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable on this host and port"
+ },
+ {
+ "id": "DROWN_hint",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "cve": "CVE-2016-0800 CVE-2016-0703",
+ "cwe": "CWE-310",
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=05D450AD61BF2A7FC0953241AF25EE618B83D87D5D29BA56DA24B42475E45905"
+ },
+ {
+ "id": "LOGJAM",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2015-4000",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable, no DH EXPORT ciphers,"
+ },
+ {
+ "id": "LOGJAM-common_primes",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2015-4000",
+ "cwe": "CWE-310",
+ "finding": "--"
+ },
+ {
+ "id": "BEAST",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2011-3389",
+ "cwe": "CWE-20",
+ "finding": "not vulnerable, no SSL3 or TLS1"
+ },
+ {
+ "id": "LUCKY13",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2013-0169",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "winshock",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2014-6321",
+ "cwe": "CWE-94",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "RC4",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2013-2566 CVE-2015-2808",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "clientsimulation-android_60",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
+ },
+ {
+ "id": "clientsimulation-android_70",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-android_81",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-android_90",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-android_X",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-android_11",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-android_12",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-chrome_79_win10",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-chrome_101_win10",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-firefox_66_win81",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-firefox_100_win10",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-ie_6_xp",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No connection"
+ },
+ {
+ "id": "clientsimulation-ie_8_win7",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No connection"
+ },
+ {
+ "id": "clientsimulation-ie_8_xp",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No connection"
+ },
+ {
+ "id": "clientsimulation-ie_11_win7",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-ie_11_win81",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-ie_11_winphone81",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No connection"
+ },
+ {
+ "id": "clientsimulation-ie_11_win10",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-edge_15_win10",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-edge_101_win10_21h2",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-safari_121_ios_122",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-safari_130_osx_10146",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-safari_154_osx_1231",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-java_7u25",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No connection"
+ },
+ {
+ "id": "clientsimulation-java_8u161",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-java1102",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-java1703",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-go_1178",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-libressl_283",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-openssl_102e",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-openssl_110l",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-openssl_111d",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-openssl_303",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-apple_mail_16_0",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-thunderbird_91_9",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "rating_spec",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
+ },
+ {
+ "id": "rating_doc",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
+ },
+ {
+ "id": "protocol_support_score",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "100"
+ },
+ {
+ "id": "protocol_support_score_weighted",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "30"
+ },
+ {
+ "id": "key_exchange_score",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "90"
+ },
+ {
+ "id": "key_exchange_score_weighted",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "27"
+ },
+ {
+ "id": "cipher_strength_score",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "60"
+ },
+ {
+ "id": "cipher_strength_score_weighted",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "24"
+ },
+ {
+ "id": "final_score",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "81"
+ },
+ {
+ "id": "overall_grade",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.233.130",
+ "port": "443",
+ "severity": "OK",
+ "finding": "A+"
+ },
+ {
+ "id": "service",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "HTTP"
+ },
+ {
+ "id": "pre_128cipher",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No 128 cipher limit bug"
+ },
+ {
+ "id": "SSLv2",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "not offered"
+ },
+ {
+ "id": "SSLv3",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "not offered"
+ },
+ {
+ "id": "TLS1",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "not offered"
+ },
+ {
+ "id": "TLS1_1",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "not offered"
+ },
+ {
+ "id": "TLS1_2",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "offered"
+ },
+ {
+ "id": "TLS1_3",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "offered with final"
+ },
+ {
+ "id": "ALPN_HTTP2",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "h2"
+ },
+ {
+ "id": "ALPN",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "http/1.1"
+ },
+ {
+ "id": "cipherlist_NULL",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cwe": "CWE-327",
+ "finding": "not offered"
+ },
+ {
+ "id": "cipherlist_aNULL",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cwe": "CWE-327",
+ "finding": "not offered"
+ },
+ {
+ "id": "cipherlist_EXPORT",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cwe": "CWE-327",
+ "finding": "not offered"
+ },
+ {
+ "id": "cipherlist_LOW",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cwe": "CWE-327",
+ "finding": "not offered"
+ },
+ {
+ "id": "cipherlist_3DES_IDEA",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "cwe": "CWE-310",
+ "finding": "not offered"
+ },
+ {
+ "id": "cipherlist_OBSOLETED",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "cwe": "CWE-310",
+ "finding": "not offered"
+ },
+ {
+ "id": "cipherlist_STRONG_NOFS",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "not offered"
+ },
+ {
+ "id": "cipherlist_STRONG_FS",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "offered"
+ },
+ {
+ "id": "cipher_order-tls1_2",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "server"
+ },
+ {
+ "id": "cipherorder_TLSv1_2",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "cipher_order",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "server"
+ },
+ {
+ "id": "FS",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "offered"
+ },
+ {
+ "id": "FS_ciphers",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "FS_ECDHE_curves",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "prime256v1 secp384r1 secp521r1"
+ },
+ {
+ "id": "TLS_extensions",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
+ },
+ {
+ "id": "TLS_session_ticket",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "valid for 300 seconds only (= 30 days"
+ },
+ {
+ "id": "cert_notBefore",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "2025-01-29 16:12"
+ },
+ {
+ "id": "cert_notAfter",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "2025-04-29 16:12"
+ },
+ {
+ "id": "cert_extlifeSpan",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "certificate has no extended life time according to browser forum"
+ },
+ {
+ "id": "cert_eTLS",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "not present"
+ },
+ {
+ "id": "cert_crlDistributionPoints",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "--"
+ },
+ {
+ "id": "cert_ocspURL",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "http://r10.o.lencr.org"
+ },
+ {
+ "id": "OCSP_stapling",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "LOW",
+ "finding": "not offered"
+ },
+ {
+ "id": "cert_mustStapleExtension",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "--"
+ },
+ {
+ "id": "DNS_CAArecord",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "LOW",
+ "finding": "--"
+ },
+ {
+ "id": "certificate_transparency",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "yes (certificate extension)"
+ },
+ {
+ "id": "certs_countServer",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "2"
+ },
+ {
+ "id": "certs_list_ordering_problem",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "no"
+ },
+ {
+ "id": "cert_caIssuers",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "R10 (Let's Encrypt from US)"
+ },
+ {
+ "id": "intermediate_cert <#1>",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----"
+ },
+ {
+ "id": "intermediate_cert_fingerprintSHA256 <#1>",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
+ },
+ {
+ "id": "intermediate_cert_notBefore <#1>",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "2024-03-13 00:00"
+ },
+ {
+ "id": "intermediate_cert_notAfter <#1>",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "2027-03-12 23:59"
+ },
+ {
+ "id": "intermediate_cert_expiration <#1>",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "ok > 40 days"
+ },
+ {
+ "id": "intermediate_cert_chain <#1>",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "R10 <-- ISRG Root X1"
+ },
+ {
+ "id": "intermediate_cert_badOCSP",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "intermediate certificate(s) is/are ok"
+ },
+ {
+ "id": "HTTP_status_code",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "200 OK ('/')"
+ },
+ {
+ "id": "HTTP_clock_skew",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "-1 seconds from localtime"
+ },
+ {
+ "id": "HTTP_headerTime",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "1740883388"
+ },
+ {
+ "id": "HSTS_time",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "365 days (=31536000 seconds) > 15552000 seconds"
+ },
+ {
+ "id": "HSTS_subdomains",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "only for this domain"
+ },
+ {
+ "id": "HSTS_preload",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "domain is NOT marked for preloading"
+ },
+ {
+ "id": "HPKP",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No support for HTTP Public Key Pinning"
+ },
+ {
+ "id": "banner_server",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No Server banner line in header, interesting!"
+ },
+ {
+ "id": "banner_application",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No application banner found"
+ },
+ {
+ "id": "cookie_count",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "0 at '/'"
+ },
+ {
+ "id": "X-Frame-Options",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "ALLOWALL"
+ },
+ {
+ "id": "X-Content-Type-Options",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "nosniff"
+ },
+ {
+ "id": "Cross-Origin-Opener-Policy",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "same-origin"
+ },
+ {
+ "id": "Referrer-Policy",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "strict-origin-when-cross-origin"
+ },
+ {
+ "id": "Cache-Control",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "max-age=900"
+ },
+ {
+ "id": "banner_reverseproxy",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "cwe": "CWE-200",
+ "finding": "X-Cache-Status: STALE"
+ },
+ {
+ "id": "heartbleed",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2014-0160",
+ "cwe": "CWE-119",
+ "finding": "not vulnerable, no heartbeat extension"
+ },
+ {
+ "id": "CCS",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2014-0224",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "ticketbleed",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2016-9244",
+ "cwe": "CWE-200",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "ROBOT",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
+ "cwe": "CWE-203",
+ "finding": "not vulnerable, no RSA key transport cipher"
+ },
+ {
+ "id": "secure_renego",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cwe": "CWE-310",
+ "finding": "supported"
+ },
+ {
+ "id": "secure_client_renego",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2011-1473",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "CRIME_TLS",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2012-4929",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "BREACH",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "MEDIUM",
+ "cve": "CVE-2013-3587",
+ "cwe": "CWE-310",
+ "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested"
+ },
+ {
+ "id": "POODLE_SSL",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2014-3566",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable, no SSLv3"
+ },
+ {
+ "id": "fallback_SCSV",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "no protocol below TLS 1.2 offered"
+ },
+ {
+ "id": "SWEET32",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2016-2183 CVE-2016-6329",
+ "cwe": "CWE-327",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "FREAK",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2015-0204",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "DROWN",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2016-0800 CVE-2016-0703",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable on this host and port"
+ },
+ {
+ "id": "DROWN_hint",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "cve": "CVE-2016-0800 CVE-2016-0703",
+ "cwe": "CWE-310",
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=05D450AD61BF2A7FC0953241AF25EE618B83D87D5D29BA56DA24B42475E45905"
+ },
+ {
+ "id": "LOGJAM",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2015-4000",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable, no DH EXPORT ciphers,"
+ },
+ {
+ "id": "LOGJAM-common_primes",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2015-4000",
+ "cwe": "CWE-310",
+ "finding": "--"
+ },
+ {
+ "id": "BEAST",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2011-3389",
+ "cwe": "CWE-20",
+ "finding": "not vulnerable, no SSL3 or TLS1"
+ },
+ {
+ "id": "LUCKY13",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2013-0169",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "winshock",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2014-6321",
+ "cwe": "CWE-94",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "RC4",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "cve": "CVE-2013-2566 CVE-2015-2808",
+ "cwe": "CWE-310",
+ "finding": "not vulnerable"
+ },
+ {
+ "id": "clientsimulation-android_60",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
+ },
+ {
+ "id": "clientsimulation-android_70",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-android_81",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-android_90",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-android_X",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-android_11",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-android_12",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-chrome_79_win10",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-chrome_101_win10",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-firefox_66_win81",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-firefox_100_win10",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-ie_6_xp",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No connection"
+ },
+ {
+ "id": "clientsimulation-ie_8_win7",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No connection"
+ },
+ {
+ "id": "clientsimulation-ie_8_xp",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No connection"
+ },
+ {
+ "id": "clientsimulation-ie_11_win7",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-ie_11_win81",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-ie_11_winphone81",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No connection"
+ },
+ {
+ "id": "clientsimulation-ie_11_win10",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-edge_15_win10",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-edge_101_win10_21h2",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-safari_121_ios_122",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-safari_130_osx_10146",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-safari_154_osx_1231",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-java_7u25",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "No connection"
+ },
+ {
+ "id": "clientsimulation-java_8u161",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-java1102",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-java1703",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-go_1178",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-libressl_283",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-openssl_102e",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-openssl_110l",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-openssl_111d",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-openssl_303",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "clientsimulation-apple_mail_16_0",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
+ },
+ {
+ "id": "clientsimulation-thunderbird_91_9",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
+ },
+ {
+ "id": "rating_spec",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
+ },
+ {
+ "id": "rating_doc",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
+ },
+ {
+ "id": "protocol_support_score",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "100"
+ },
+ {
+ "id": "protocol_support_score_weighted",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "30"
+ },
+ {
+ "id": "key_exchange_score",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "90"
+ },
+ {
+ "id": "key_exchange_score_weighted",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "27"
+ },
+ {
+ "id": "cipher_strength_score",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "60"
+ },
+ {
+ "id": "cipher_strength_score_weighted",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "24"
+ },
+ {
+ "id": "final_score",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "81"
+ },
+ {
+ "id": "overall_grade",
+ "ip": "quefairedemesdechets.ademe.fr/109.232.236.90",
+ "port": "443",
+ "severity": "OK",
+ "finding": "A+"
+ },
+ {
+ "id": "service",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -39407,7 +40821,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -39415,7 +40829,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -39423,7 +40837,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -39431,7 +40845,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -39439,7 +40853,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -39447,512 +40861,498 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
- "finding": "server -- TLS 1.3 client determined"
+ "finding": "server"
},
{
"id": "FS",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384"
+ "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
- "finding": "prime256v1"
+ "finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'"
+ "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "no -- no lifetime advertised"
+ "finding": "valid for 300 seconds only (= 30 days"
+ "finding": "58 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-03 10:03"
+ "finding": "2025-01-29 16:12"
},
{
"id": "cert_notAfter",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
- "finding": "2025-03-03 10:03"
+ "finding": "2025-04-29 16:12"
},
{
"id": "cert_extlifeSpan",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "http://e5.o.lencr.org"
+ "finding": "http://r10.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "E5 (Let's Encrypt from US)"
+ "finding": "R10 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "5DFDB3CF31B26F23D87C09F3A0CEF642F64069A9FB7CFE29270BB5DC0F1E16BB"
+ "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "E5 <-- ISRG Root X1"
+ "finding": "R10 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "+2961 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
- "port": "443",
- "severity": "INFO",
- "finding": "1737859674"
- },
- {
- "id": "HTTP_headerAge",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "2961 seconds"
+ "finding": "1740883485"
},
{
"id": "HSTS_time",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "Netlify"
+ "finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
- "finding": "DENY"
+ "finding": "ALLOWALL"
},
{
"id": "X-Content-Type-Options",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
- "id": "Content-Security-Policy",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
- "port": "443",
- "severity": "OK",
- "finding": "frame-ancestors *;"
- },
- {
- "id": "X-XSS-Protection",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "id": "Cross-Origin-Opener-Policy",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "1; mode=block"
+ "finding": "same-origin"
},
{
"id": "Referrer-Policy",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "strict-origin-when-cross-origin"
},
{
"id": "Cache-Control",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "public,max-age=0,must-revalidate"
+ "finding": "max-age=900"
},
{
"id": "banner_reverseproxy",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
- "finding": "--"
+ "finding": "X-Cache-Status: HIT"
},
{
"id": "heartbleed",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -39961,7 +41361,7 @@
},
{
"id": "CCS",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -39970,7 +41370,7 @@
},
{
"id": "ticketbleed",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -39979,7 +41379,7 @@
},
{
"id": "ROBOT",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -39988,7 +41388,7 @@
},
{
"id": "secure_renego",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -39996,7 +41396,7 @@
},
{
"id": "secure_client_renego",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -40005,7 +41405,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -40014,16 +41414,16 @@
},
{
"id": "BREACH",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
"cwe": "CWE-310",
- "finding": "potentially VULNERABLE, br gzip deflate HTTP compression detected - only supplied '/' tested"
+ "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested"
},
{
"id": "POODLE_SSL",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -40032,14 +41432,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -40048,7 +41448,7 @@
},
{
"id": "FREAK",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -40057,7 +41457,7 @@
},
{
"id": "DROWN",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -40066,16 +41466,16 @@
},
{
"id": "DROWN_hint",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "no RSA certificate, can't be used with SSLv2 elsewhere"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=05D450AD61BF2A7FC0953241AF25EE618B83D87D5D29BA56DA24B42475E45905"
},
{
"id": "LOGJAM",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -40084,16 +41484,16 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
"cwe": "CWE-310",
- "finding": "no DH key with <= TLS 1.2"
+ "finding": "--"
},
{
"id": "BEAST",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -40102,7 +41502,7 @@
},
{
"id": "LUCKY13",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -40111,7 +41511,7 @@
},
{
"id": "winshock",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -40120,7 +41520,7 @@
},
{
"id": "RC4",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -40129,392 +41529,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "100"
+ "finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "30"
+ "finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "84"
+ "finding": "81"
},
{
"id": "overall_grade",
- "ip": "quefairedemesdechets.ademe.fr/100.28.201.155",
+ "ip": "quefairedemesdechets.ademe.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -40522,7 +41922,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -40530,7 +41930,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -40538,7 +41938,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -40546,7 +41946,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -40554,7 +41954,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -40562,512 +41962,498 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
- "finding": "server -- TLS 1.3 client determined"
+ "finding": "server"
},
{
"id": "FS",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384"
+ "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
- "finding": "prime256v1"
+ "finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'"
+ "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "no -- no lifetime advertised"
+ "finding": "valid for 300 seconds only (= 30 days"
+ "finding": "58 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-03 10:03"
+ "finding": "2025-01-29 16:12"
},
{
"id": "cert_notAfter",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
- "finding": "2025-03-03 10:03"
+ "finding": "2025-04-29 16:12"
},
{
"id": "cert_extlifeSpan",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "http://e5.o.lencr.org"
+ "finding": "http://r10.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "E5 (Let's Encrypt from US)"
+ "finding": "R10 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "5DFDB3CF31B26F23D87C09F3A0CEF642F64069A9FB7CFE29270BB5DC0F1E16BB"
+ "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "E5 <-- ISRG Root X1"
+ "finding": "R10 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "+1126 seconds from localtime"
+ "finding": "0 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
- "port": "443",
- "severity": "INFO",
- "finding": "1737859712"
- },
- {
- "id": "HTTP_headerAge",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "1126 seconds"
+ "finding": "1740883581"
},
{
"id": "HSTS_time",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "Netlify"
+ "finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
- "finding": "DENY"
+ "finding": "ALLOWALL"
},
{
"id": "X-Content-Type-Options",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
- "id": "Content-Security-Policy",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
- "port": "443",
- "severity": "OK",
- "finding": "frame-ancestors *;"
- },
- {
- "id": "X-XSS-Protection",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "id": "Cross-Origin-Opener-Policy",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "1; mode=block"
+ "finding": "same-origin"
},
{
"id": "Referrer-Policy",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "strict-origin-when-cross-origin"
},
{
"id": "Cache-Control",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "public,max-age=0,must-revalidate"
+ "finding": "max-age=900"
},
{
"id": "banner_reverseproxy",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
- "finding": "--"
+ "finding": "X-Cache-Status: HIT"
},
{
"id": "heartbleed",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -41076,7 +42462,7 @@
},
{
"id": "CCS",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -41085,7 +42471,7 @@
},
{
"id": "ticketbleed",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -41094,7 +42480,7 @@
},
{
"id": "ROBOT",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -41103,7 +42489,7 @@
},
{
"id": "secure_renego",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -41111,7 +42497,7 @@
},
{
"id": "secure_client_renego",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -41120,7 +42506,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -41129,16 +42515,16 @@
},
{
"id": "BREACH",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
"cwe": "CWE-310",
- "finding": "potentially VULNERABLE, br gzip deflate HTTP compression detected - only supplied '/' tested"
+ "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested"
},
{
"id": "POODLE_SSL",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -41147,14 +42533,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -41163,7 +42549,7 @@
},
{
"id": "FREAK",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -41172,7 +42558,7 @@
},
{
"id": "DROWN",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -41181,16 +42567,16 @@
},
{
"id": "DROWN_hint",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "no RSA certificate, can't be used with SSLv2 elsewhere"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=05D450AD61BF2A7FC0953241AF25EE618B83D87D5D29BA56DA24B42475E45905"
},
{
"id": "LOGJAM",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -41199,16 +42585,16 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
"cwe": "CWE-310",
- "finding": "no DH key with <= TLS 1.2"
+ "finding": "--"
},
{
"id": "BEAST",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -41217,7 +42603,7 @@
},
{
"id": "LUCKY13",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -41226,7 +42612,7 @@
},
{
"id": "winshock",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -41235,7 +42621,7 @@
},
{
"id": "RC4",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -41244,325 +42630,325 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
+ "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
+ "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "100"
+ "finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "30"
+ "finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "84"
+ "finding": "81"
},
{
"id": "overall_grade",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "scanTime",
- "ip": "quefairedemesdechets.ademe.fr/34.234.106.80",
+ "ip": "quefairedemesdechets.ademe.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "79"
+ "finding": "386"
}
],
"thirdparties": {
@@ -41579,97 +42965,15 @@
},
"technologies": [
{
- "slug": "sentry",
- "name": "Sentry",
- "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.",
- "confidence": 100,
- "version": null,
- "icon": "Sentry.svg",
- "website": "https://sentry.io/",
- "cpe": null,
- "categories": [
- {
- "id": 13,
- "slug": "issue-trackers",
- "name": "Issue trackers"
- }
- ],
- "rootPath": true
- },
- {
- "slug": "react",
- "name": "React",
- "description": "React is an open-source JavaScript library for building user interfaces or UI components.",
- "confidence": 100,
- "version": null,
- "icon": "React.svg",
- "website": "https://reactjs.org",
- "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*",
- "categories": [
- {
- "id": 12,
- "slug": "javascript-frameworks",
- "name": "JavaScript frameworks"
- }
- ],
- "rootPath": true
- },
- {
- "slug": "styled-components",
- "name": "styled-components",
- "description": "Styled components is a CSS-in-JS styling framework that uses tagged template literals in JavaScript.",
- "confidence": 100,
- "version": "6.1.13",
- "icon": "styled-components.svg",
- "website": "https://styled-components.com",
- "cpe": null,
- "categories": [
- {
- "id": 12,
- "slug": "javascript-frameworks",
- "name": "JavaScript frameworks"
- },
- {
- "id": 47,
- "slug": "development",
- "name": "Development"
- }
- ],
- "rootPath": true
- },
- {
- "slug": "netlify-forms",
- "name": "Netlify Forms",
- "description": "Netlify Forms is a serverless form handling solution for static websites.",
+ "slug": "stimulus",
+ "name": "Stimulus",
+ "description": "A modest JavaScript framework for the HTML you already have.",
"confidence": 100,
"version": null,
- "icon": "Netlify.svg",
- "website": "https://www.netlify.com/products/forms",
- "cpe": null,
- "categories": [
- {
- "id": 110,
- "slug": "form-builders",
- "name": "Form builders"
- }
- ],
- "rootPath": true
- },
- {
- "slug": "gatsby",
- "name": "Gatsby",
- "description": "Gatsby is a React-based open-source framework with performance, scalability and security built-in.",
- "confidence": 100,
- "version": "5.13.7",
- "icon": "Gatsby.svg",
- "website": "https://www.gatsbyjs.org/",
+ "icon": "Stimulus.svg",
+ "website": "https://stimulusjs.org/",
"cpe": null,
"categories": [
- {
- "id": 57,
- "slug": "static-site-generator",
- "name": "Static site generator"
- },
{
"id": 12,
"slug": "javascript-frameworks",
@@ -41679,54 +42983,19 @@
"rootPath": true
},
{
- "slug": "cloudflare",
- "name": "Cloudflare",
- "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.",
- "confidence": 100,
- "version": null,
- "icon": "CloudFlare.svg",
- "website": "https://www.cloudflare.com",
- "cpe": null,
- "categories": [
- {
- "id": 31,
- "slug": "cdn",
- "name": "CDN"
- }
- ]
- },
- {
- "slug": "cdnjs",
- "name": "cdnjs",
- "description": "cdnjs is a free distributed JS library delivery service.",
+ "slug": "turbo",
+ "name": "Turbo",
+ "description": "Turbo is a JavaScript framework for building fast web applications.",
"confidence": 100,
"version": null,
- "icon": "cdnjs.svg",
- "website": "https://cdnjs.com",
+ "icon": "Turbo.svg",
+ "website": "https://turbo.hotwired.dev/",
"cpe": null,
"categories": [
{
- "id": 31,
- "slug": "cdn",
- "name": "CDN"
- }
- ],
- "rootPath": true
- },
- {
- "slug": "posthog",
- "name": "PostHog",
- "description": "PostHog is the open-source, all-in-one product analytics platform.",
- "confidence": 100,
- "version": null,
- "icon": "PostHog.svg",
- "website": "https://posthog.com",
- "cpe": null,
- "categories": [
- {
- "id": 10,
- "slug": "analytics",
- "name": "Analytics"
+ "id": 92,
+ "slug": "performance",
+ "name": "Performance"
}
],
"rootPath": true
@@ -41749,65 +43018,6 @@
],
"rootPath": true
},
- {
- "slug": "core-js",
- "name": "core-js",
- "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.",
- "confidence": 100,
- "version": "2.6.12",
- "icon": "core-js.png",
- "website": "https://github.com/zloirock/core-js",
- "cpe": null,
- "categories": [
- {
- "id": 59,
- "slug": "javascript-libraries",
- "name": "JavaScript libraries"
- }
- ],
- "rootPath": true
- },
- {
- "slug": "tally",
- "name": "Tally",
- "description": "Tally is the simplest way to create free forms & surveys. Create any type of form in seconds, without knowing how to code, and for free.",
- "confidence": 100,
- "version": null,
- "icon": "Tally.svg",
- "website": "https://tally.so/",
- "cpe": null,
- "categories": [
- {
- "id": 73,
- "slug": "surveys",
- "name": "Surveys"
- }
- ],
- "rootPath": true
- },
- {
- "slug": "netlify",
- "name": "Netlify",
- "description": "Netlify providers hosting and server-less backend services for web applications and static websites.",
- "confidence": 100,
- "version": null,
- "icon": "Netlify.svg",
- "website": "https://www.netlify.com/",
- "cpe": null,
- "categories": [
- {
- "id": 62,
- "slug": "paas",
- "name": "PaaS"
- },
- {
- "id": 31,
- "slug": "cdn",
- "name": "CDN"
- }
- ],
- "rootPath": true
- },
{
"slug": "hsts",
"name": "HSTS",
@@ -41826,23 +43036,6 @@
],
"rootPath": true
},
- {
- "slug": "webpack",
- "name": "Webpack",
- "description": "Webpack is an open-source JavaScript module bundler.",
- "confidence": 50,
- "version": null,
- "icon": "Webpack.svg",
- "website": "https://webpack.js.org/",
- "cpe": null,
- "categories": [
- {
- "id": 19,
- "slug": "miscellaneous",
- "name": "Miscellaneous"
- }
- ]
- },
{
"slug": "pwa",
"name": "PWA",
@@ -41878,30 +43071,13 @@
}
],
"rootPath": true
- },
- {
- "slug": "module-federation",
- "name": "Module Federation",
- "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.",
- "confidence": 50,
- "version": null,
- "icon": "Webpack.svg",
- "website": "https://webpack.js.org/concepts/module-federation/",
- "cpe": null,
- "categories": [
- {
- "id": 19,
- "slug": "miscellaneous",
- "name": "Miscellaneous"
- }
- ]
}
]
},
"zap": {
"@programName": "ZAP",
"@version": "2.16.0",
- "@generated": "Sun, 26 Jan 2025 02:43:19",
+ "@generated": "Sun, 2 Mar 2025 02:38:43",
"site": [
{
"@name": "https://quefairedemesdechets.ademe.fr",
@@ -41909,27 +43085,6 @@
"@port": "443",
"@ssl": "true",
"alerts": [
- {
- "name": "CSP: Wildcard Directive",
- "riskcode": "2",
- "confidence": "3",
- "riskdesc": "Medium (High)",
- "desc": "Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.
"
- },
- {
- "name": "CSP: script-src unsafe-inline",
- "riskcode": "2",
- "confidence": "3",
- "riskdesc": "Medium (High)",
- "desc": "Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.
"
- },
- {
- "name": "CSP: style-src unsafe-inline",
- "riskcode": "2",
- "confidence": "3",
- "riskdesc": "Medium (High)",
- "desc": "Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.
"
- },
{
"name": "Content Security Policy (CSP) Header Not Set",
"riskcode": "2",
@@ -41945,11 +43100,11 @@
"desc": "The integrity attribute is missing on a script or link tag served by an external server. The integrity tag prevents an attacker who have gained access to this server from injecting a malicious content.
"
},
{
- "name": "Big Redirect Detected (Potential Sensitive Information Leak)",
- "riskcode": "1",
+ "name": "X-Frame-Options Setting Malformed",
+ "riskcode": "2",
"confidence": "2",
- "riskdesc": "Low (Medium)",
- "desc": "The server has responded with a redirect that seems to provide a large response. This may indicate that although the server sent a redirect it also responded with body content (which may include sensitive details, PII, etc.).
"
+ "riskdesc": "Medium (Medium)",
+ "desc": "An X-Frame-Options header was present in the response but the value was not correctly set.
"
},
{
"name": "Cross-Domain JavaScript Source File Inclusion",
@@ -41973,18 +43128,18 @@
"desc": "Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.
"
},
{
- "name": "Base64 Disclosure",
- "riskcode": "0",
+ "name": "X-Content-Type-Options Header Missing",
+ "riskcode": "1",
"confidence": "2",
- "riskdesc": "Informational (Medium)",
- "desc": "Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).
"
+ "riskdesc": "Low (Medium)",
+ "desc": "The Anti-MIME-Sniffing header X-Content-Type-Options was not set to 'nosniff'. This allows older versions of Internet Explorer and Chrome to perform MIME-sniffing on the response body, potentially causing the response body to be interpreted and displayed as a content type other than the declared content type. Current (early 2014) and legacy versions of Firefox will use the declared content type (if one is set), rather than performing MIME-sniffing.
"
},
{
- "name": "Information Disclosure - Sensitive Information in URL",
+ "name": "Base64 Disclosure",
"riskcode": "0",
"confidence": "2",
"riskdesc": "Informational (Medium)",
- "desc": "The request appeared to contain sensitive information leaked in the URL. This can violate PCI and most organizational compliance policies. You can configure the list of strings for this check to add or remove values specific to your environment.
"
+ "desc": "Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).
"
},
{
"name": "Information Disclosure - Suspicious Comments",
@@ -42007,13 +43162,6 @@
"riskdesc": "Informational (Low)",
"desc": "The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.
"
},
- {
- "name": "Retrieved from Cache",
- "riskcode": "0",
- "confidence": "2",
- "riskdesc": "Informational (Medium)",
- "desc": "The content was retrieved from a shared cache. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.
"
- },
{
"name": "Sec-Fetch-Dest Header is Missing",
"riskcode": "0",
@@ -42048,6 +43196,13 @@
"confidence": "2",
"riskdesc": "Informational (Medium)",
"desc": "The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.
"
+ },
+ {
+ "name": "User Controllable HTML Element Attribute (Potential XSS)",
+ "riskcode": "0",
+ "confidence": "1",
+ "riskdesc": "Informational (Low)",
+ "desc": "This check looks at user-supplied input in query string parameters and POST data to identify where certain HTML attribute values might be controlled. This provides hot-spot detection for XSS (cross-site scripting) that will require further review by a security analyst to determine exploitability.
"
}
]
}
@@ -42081,14 +43236,13 @@
"max-request": 1
}
},
- "matcher-name": "netlify",
"type": "dns",
"host": "quefairedemesdechets.ademe.fr.",
"matched-at": "quefairedemesdechets.ademe.fr",
"extracted-results": [
- "quefairedemesdechets.netlify.app."
+ "osc-fr1.scalingo.io."
],
- "timestamp": "2025-01-26T02:29:30.273843926Z",
+ "timestamp": "2025-03-02T02:48:10.1829482Z",
"matcher-status": true
},
{
@@ -42123,48 +43277,38 @@
"type": "dns",
"host": "quefairedemesdechets.ademe.fr.",
"matched-at": "quefairedemesdechets.ademe.fr",
- "timestamp": "2025-01-26T02:29:30.715992234Z",
+ "timestamp": "2025-03-02T02:48:10.249795516Z",
"matcher-status": true
},
{
- "template": "http/misconfiguration/xss-deprecated-header.yaml",
- "template-url": "https://templates.nuclei.sh/public/xss-deprecated-header",
- "template-id": "xss-deprecated-header",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/xss-deprecated-header.yaml",
+ "template": "http/miscellaneous/options-method.yaml",
+ "template-url": "https://templates.nuclei.sh/public/options-method",
+ "template-id": "options-method",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/options-method.yaml",
"info": {
- "name": "XSS-Protection Header - Cross-Site Scripting",
+ "name": "Allowed Options Method",
"author": [
- "joshlarsen"
+ "pdteam"
],
"tags": [
- "xss",
- "misconfig",
+ "miscellaneous",
+ "misc",
"generic"
],
- "description": "Setting the XSS-Protection header is deprecated. Setting the header to anything other than `0` can actually introduce an XSS vulnerability.",
- "reference": [
- "https://developer.mozilla.org/en-us/docs/web/http/headers/x-xss-protection",
- "https://owasp.org/www-project-secure-headers/#x-xss-protection"
- ],
"severity": "info",
"metadata": {
"max-request": 1
- },
- "classification": {
- "cve-id": null,
- "cwe-id": null,
- "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
"type": "http",
"host": "https://quefairedemesdechets.ademe.fr",
"matched-at": "https://quefairedemesdechets.ademe.fr",
"extracted-results": [
- "1; mode=block"
+ "GET, HEAD, OPTIONS"
],
- "ip": "34.234.106.80",
- "timestamp": "2025-01-26T02:29:40.602629738Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://quefairedemesdechets.ademe.fr'",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T02:48:20.834441563Z",
+ "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://quefairedemesdechets.ademe.fr'",
"matcher-status": true
},
{
@@ -42194,8 +43338,8 @@
"type": "http",
"host": "https://quefairedemesdechets.ademe.fr",
"matched-at": "https://quefairedemesdechets.ademe.fr",
- "ip": "34.234.106.80",
- "timestamp": "2025-01-26T02:30:06.382703283Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T02:49:33.72763055Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://quefairedemesdechets.ademe.fr'",
"matcher-status": true
},
@@ -42228,12 +43372,12 @@
"max-request": 1
}
},
- "matcher-name": "clear-site-data",
+ "matcher-name": "content-security-policy",
"type": "http",
"host": "https://quefairedemesdechets.ademe.fr",
"matched-at": "https://quefairedemesdechets.ademe.fr",
- "ip": "34.234.106.80",
- "timestamp": "2025-01-26T02:30:08.607282478Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T02:49:41.842177337Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://quefairedemesdechets.ademe.fr'",
"matcher-status": true
},
@@ -42266,12 +43410,12 @@
"max-request": 1
}
},
- "matcher-name": "cross-origin-embedder-policy",
+ "matcher-name": "permissions-policy",
"type": "http",
"host": "https://quefairedemesdechets.ademe.fr",
"matched-at": "https://quefairedemesdechets.ademe.fr",
- "ip": "34.234.106.80",
- "timestamp": "2025-01-26T02:30:08.607339474Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T02:49:41.842214727Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://quefairedemesdechets.ademe.fr'",
"matcher-status": true
},
@@ -42304,12 +43448,12 @@
"max-request": 1
}
},
- "matcher-name": "cross-origin-opener-policy",
+ "matcher-name": "x-permitted-cross-domain-policies",
"type": "http",
"host": "https://quefairedemesdechets.ademe.fr",
"matched-at": "https://quefairedemesdechets.ademe.fr",
- "ip": "34.234.106.80",
- "timestamp": "2025-01-26T02:30:08.607355614Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T02:49:41.842232931Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://quefairedemesdechets.ademe.fr'",
"matcher-status": true
},
@@ -42342,12 +43486,12 @@
"max-request": 1
}
},
- "matcher-name": "cross-origin-resource-policy",
+ "matcher-name": "clear-site-data",
"type": "http",
"host": "https://quefairedemesdechets.ademe.fr",
"matched-at": "https://quefairedemesdechets.ademe.fr",
- "ip": "34.234.106.80",
- "timestamp": "2025-01-26T02:30:08.607373969Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T02:49:41.842248319Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://quefairedemesdechets.ademe.fr'",
"matcher-status": true
},
@@ -42380,12 +43524,12 @@
"max-request": 1
}
},
- "matcher-name": "permissions-policy",
+ "matcher-name": "cross-origin-embedder-policy",
"type": "http",
"host": "https://quefairedemesdechets.ademe.fr",
"matched-at": "https://quefairedemesdechets.ademe.fr",
- "ip": "34.234.106.80",
- "timestamp": "2025-01-26T02:30:08.607387204Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T02:49:41.842261284Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://quefairedemesdechets.ademe.fr'",
"matcher-status": true
},
@@ -42418,132 +43562,85 @@
"max-request": 1
}
},
- "matcher-name": "x-permitted-cross-domain-policies",
+ "matcher-name": "cross-origin-resource-policy",
"type": "http",
"host": "https://quefairedemesdechets.ademe.fr",
"matched-at": "https://quefairedemesdechets.ademe.fr",
- "ip": "34.234.106.80",
- "timestamp": "2025-01-26T02:30:08.607408644Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T02:49:41.842276061Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://quefairedemesdechets.ademe.fr'",
"matcher-status": true
},
{
- "template": "http/technologies/metatag-cms.yaml",
- "template-url": "https://templates.nuclei.sh/public/metatag-cms",
- "template-id": "metatag-cms",
- "template-path": "/home/runner/nuclei-templates/http/technologies/metatag-cms.yaml",
+ "template": "http/miscellaneous/sitemap-detect.yaml",
+ "template-url": "https://templates.nuclei.sh/public/sitemap-detect",
+ "template-id": "sitemap-detect",
+ "template-path": "/home/runner/nuclei-templates/http/miscellaneous/sitemap-detect.yaml",
"info": {
- "name": "Metatag CMS Detection",
+ "name": "Sitemap Detection",
"author": [
- "dadevel"
+ "houdinis"
],
"tags": [
- "tech",
- "cms"
- ],
- "description": "Generic CMS Detection using html meta generator tag",
- "reference": [
- "https://www.w3schools.com/tags/att_meta_name.asp"
+ "miscellaneous",
+ "misc",
+ "generic",
+ "sitemap"
],
+ "description": "A sitemap is a file where you provide information about the pages, videos, and other files on your site, and the relationships between them.\n",
"severity": "info",
"metadata": {
- "max-request": 1
+ "google-query": "intext:\"sitemap\" filetype:txt,filetype:xml inurl:sitemap,inurl:\"/sitemap.xsd\" ext:xsd",
+ "max-request": 3,
+ "verified": true
}
},
"type": "http",
"host": "https://quefairedemesdechets.ademe.fr",
- "matched-at": "https://quefairedemesdechets.ademe.fr",
- "extracted-results": [
- "Gatsby 5.13.7"
- ],
- "ip": "34.234.106.80",
- "timestamp": "2025-01-26T02:30:09.100343114Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://quefairedemesdechets.ademe.fr'",
+ "matched-at": "https://quefairedemesdechets.ademe.fr/sitemap.xml",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T02:50:00.537977758Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://quefairedemesdechets.ademe.fr/sitemap.xml'",
"matcher-status": true
},
{
- "template": "http/technologies/tech-detect.yaml",
- "template-url": "https://templates.nuclei.sh/public/tech-detect",
- "template-id": "tech-detect",
- "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml",
+ "template": "http/technologies/waf-detect.yaml",
+ "template-url": "https://templates.nuclei.sh/public/waf-detect",
+ "template-id": "waf-detect",
+ "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml",
"info": {
- "name": "Wappalyzer Technology Detection",
+ "name": "WAF Detection",
"author": [
- "hakluke",
- "righettod"
+ "dwisiswant0",
+ "lu4nx"
],
"tags": [
- "tech"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 1
- }
- },
- "matcher-name": "react",
- "type": "http",
- "host": "https://quefairedemesdechets.ademe.fr",
- "matched-at": "https://quefairedemesdechets.ademe.fr",
- "ip": "34.234.106.80",
- "timestamp": "2025-01-26T02:30:09.641228838Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://quefairedemesdechets.ademe.fr'",
- "matcher-status": true
- },
- {
- "template": "http/technologies/tech-detect.yaml",
- "template-url": "https://templates.nuclei.sh/public/tech-detect",
- "template-id": "tech-detect",
- "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml",
- "info": {
- "name": "Wappalyzer Technology Detection",
- "author": [
- "hakluke",
- "righettod"
+ "waf",
+ "tech",
+ "misc"
],
- "tags": [
- "tech"
+ "description": "A web application firewall was detected.",
+ "reference": [
+ "https://github.com/ekultek/whatwaf"
],
"severity": "info",
"metadata": {
"max-request": 1
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ]
}
},
- "matcher-name": "gatsby",
- "type": "http",
- "host": "https://quefairedemesdechets.ademe.fr",
- "matched-at": "https://quefairedemesdechets.ademe.fr",
- "ip": "34.234.106.80",
- "timestamp": "2025-01-26T02:30:09.641266168Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://quefairedemesdechets.ademe.fr'",
- "matcher-status": true
- },
- {
- "template": "http/miscellaneous/robots-txt-endpoint.yaml",
- "template-url": "https://templates.nuclei.sh/public/robots-txt-endpoint",
- "template-id": "robots-txt-endpoint",
- "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt-endpoint.yaml",
- "info": {
- "name": "robots.txt endpoint prober",
- "author": [
- "caspergn",
- "pdteam"
- ],
- "tags": [
- "miscellaneous",
- "misc",
- "generic"
- ],
- "severity": "info",
- "metadata": {
- "max-request": 2
- }
- },
+ "matcher-name": "apachegeneric",
"type": "http",
"host": "https://quefairedemesdechets.ademe.fr",
- "matched-at": "https://quefairedemesdechets.ademe.fr/robots.txt",
- "ip": "34.234.106.80",
- "timestamp": "2025-01-26T02:30:15.527730625Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://quefairedemesdechets.ademe.fr/robots.txt'",
+ "matched-at": "https://quefairedemesdechets.ademe.fr/",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T02:50:27.671721339Z",
+ "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: quefairedemesdechets.ademe.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://quefairedemesdechets.ademe.fr/'",
"matcher-status": true
},
{
@@ -42572,8 +43669,8 @@
"extracted-results": [
"Let's Encrypt"
],
- "ip": "34.234.106.80",
- "timestamp": "2025-01-26T02:41:43.443022034Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T02:56:28.089897925Z",
"matcher-status": true
},
{
@@ -42600,11 +43697,10 @@
"host": "quefairedemesdechets.ademe.fr",
"matched-at": "quefairedemesdechets.ademe.fr:443",
"extracted-results": [
- "quefairedemesobjets.ademe.fr",
"quefairedemesdechets.ademe.fr"
],
- "ip": "34.234.106.80",
- "timestamp": "2025-01-26T02:41:43.443200648Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T02:56:28.090028609Z",
"matcher-status": true
},
{
@@ -42634,8 +43730,8 @@
"extracted-results": [
"tls12"
],
- "ip": "34.234.106.80",
- "timestamp": "2025-01-26T02:41:44.33752549Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T02:56:30.71737073Z",
"matcher-status": true
},
{
@@ -42665,8 +43761,8 @@
"extracted-results": [
"tls13"
],
- "ip": "34.234.106.80",
- "timestamp": "2025-01-26T02:41:44.38249172Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T02:56:31.085318821Z",
"matcher-status": true
}
],
@@ -42674,7 +43770,7 @@
{
"requestedUrl": "https://quefairedemesdechets.ademe.fr/",
"finalUrl": "https://quefairedemesdechets.ademe.fr/",
- "fetchTime": "2025-01-26T02:47:24.749Z",
+ "fetchTime": "2025-03-02T02:38:58.570Z",
"runWarnings": [],
"categories": {
"performance": {
@@ -42685,7 +43781,7 @@
"snapshot"
],
"id": "performance",
- "score": 0.7
+ "score": 0.82
},
"accessibility": {
"title": "Accessibility",
@@ -42706,7 +43802,7 @@
"snapshot"
],
"id": "best-practices",
- "score": 1
+ "score": 0.92
},
"seo": {
"title": "SEO",
@@ -42717,7 +43813,7 @@
"snapshot"
],
"id": "seo",
- "score": 1
+ "score": 0.98
},
"pwa": {
"title": "PWA",
@@ -42727,7 +43823,7 @@
"navigation"
],
"id": "pwa",
- "score": 0.9
+ "score": 0.7
}
},
"audits": {
@@ -42737,53 +43833,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 6666,
+ "numericValue": 3351,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 1736,
- "firstMeaningfulPaint": 1736,
- "largestContentfulPaint": 3713,
- "interactive": 6666,
- "speedIndex": 1736,
- "totalBlockingTime": 574,
- "maxPotentialFID": 276,
- "cumulativeLayoutShift": 0.009935005187988281,
- "cumulativeLayoutShiftMainFrame": 0.009935005187988281,
- "totalCumulativeLayoutShift": 0.009935005187988281,
+ "firstContentfulPaint": 3351,
+ "firstMeaningfulPaint": 3351,
+ "largestContentfulPaint": 3628,
+ "interactive": 3351,
+ "speedIndex": 3510,
+ "totalBlockingTime": 0,
+ "maxPotentialFID": 16,
+ "cumulativeLayoutShift": 0.008960983700222438,
+ "cumulativeLayoutShiftMainFrame": 0.008960983700222438,
+ "totalCumulativeLayoutShift": 0.012182129330105249,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 1236209494,
+ "observedTimeOriginTs": 435732468,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 1236209494,
- "observedFirstPaint": 88,
- "observedFirstPaintTs": 1236297944,
- "observedFirstContentfulPaint": 88,
- "observedFirstContentfulPaintTs": 1236297944,
- "observedFirstContentfulPaintAllFrames": 88,
- "observedFirstContentfulPaintAllFramesTs": 1236297944,
- "observedFirstMeaningfulPaint": 88,
- "observedFirstMeaningfulPaintTs": 1236297944,
- "observedLargestContentfulPaint": 110,
- "observedLargestContentfulPaintTs": 1236319805,
- "observedLargestContentfulPaintAllFrames": 110,
- "observedLargestContentfulPaintAllFramesTs": 1236319805,
- "observedTraceEnd": 3721,
- "observedTraceEndTs": 1239930777,
- "observedLoad": 627,
- "observedLoadTs": 1236836235,
- "observedDomContentLoaded": 171,
- "observedDomContentLoadedTs": 1236380167,
- "observedCumulativeLayoutShift": 0.009935005187988281,
- "observedCumulativeLayoutShiftMainFrame": 0.009935005187988281,
- "observedTotalCumulativeLayoutShift": 0.009935005187988281,
- "observedFirstVisualChange": 91,
- "observedFirstVisualChangeTs": 1236300494,
- "observedLastVisualChange": 3707,
- "observedLastVisualChangeTs": 1239916494,
- "observedSpeedIndex": 168,
- "observedSpeedIndexTs": 1236377376
+ "observedNavigationStartTs": 435732468,
+ "observedFirstPaint": 1055,
+ "observedFirstPaintTs": 436787113,
+ "observedFirstContentfulPaint": 1055,
+ "observedFirstContentfulPaintTs": 436787113,
+ "observedFirstContentfulPaintAllFrames": 1055,
+ "observedFirstContentfulPaintAllFramesTs": 436787113,
+ "observedFirstMeaningfulPaint": 1055,
+ "observedFirstMeaningfulPaintTs": 436787113,
+ "observedLargestContentfulPaint": 1055,
+ "observedLargestContentfulPaintTs": 436787113,
+ "observedLargestContentfulPaintAllFrames": 1055,
+ "observedLargestContentfulPaintAllFramesTs": 436787113,
+ "observedTraceEnd": 4667,
+ "observedTraceEndTs": 440399050,
+ "observedLoad": 1758,
+ "observedLoadTs": 437490411,
+ "observedDomContentLoaded": 1144,
+ "observedDomContentLoadedTs": 436876794,
+ "observedCumulativeLayoutShift": 0.008960983700222438,
+ "observedCumulativeLayoutShiftMainFrame": 0.008960983700222438,
+ "observedTotalCumulativeLayoutShift": 0.012182129330105249,
+ "observedFirstVisualChange": 1066,
+ "observedFirstVisualChangeTs": 436798468,
+ "observedLastVisualChange": 4666,
+ "observedLastVisualChangeTs": 440398468,
+ "observedSpeedIndex": 1130,
+ "observedSpeedIndexTs": 436862691
},
{
"lcpInvalidated": false
@@ -42801,23 +43897,23 @@
"type": "debugdata",
"items": [
{
- "numRequests": 47,
- "numScripts": 12,
- "numStylesheets": 1,
+ "numRequests": 38,
+ "numScripts": 6,
+ "numStylesheets": 4,
"numFonts": 3,
- "numTasks": 861,
- "numTasksOver10ms": 9,
- "numTasksOver25ms": 4,
- "numTasksOver50ms": 1,
+ "numTasks": 24,
+ "numTasksOver10ms": 0,
+ "numTasksOver25ms": 0,
+ "numTasksOver50ms": 0,
"numTasksOver100ms": 0,
"numTasksOver500ms": 0,
- "rtt": 0,
- "throughput": 20274948.920776155,
- "maxRtt": 94.33000000000001,
- "maxServerLatency": 69.07300000000001,
- "totalByteWeight": 888134,
- "totalTaskTime": 446.0149999999995,
- "mainDocumentTransferSize": 34177
+ "rtt": 8.802,
+ "throughput": 8482449.262883466,
+ "maxRtt": 144.66799999999998,
+ "maxServerLatency": 61.404,
+ "totalByteWeight": 742455,
+ "totalTaskTime": 3.4279999999999995,
+ "mainDocumentTransferSize": 60528
}
]
}
@@ -42843,24 +43939,26 @@
},
"declaration-a11y": {
"mention": "Accessibilité : partiellement conforme",
- "declarationUrl": "https://quefairedemesdechets.ademe.fr/accessibilite/"
+ "declarationUrl": "https://quefairedemesdechets.ademe.fr/assistant/accessibilite"
},
"declaration-rgpd": [
{
"slug": "ml",
- "mention": null,
- "maxScore": 0,
- "score": 0,
+ "mention": "Mentions légales",
+ "maxScore": 4,
+ "score": 4,
"missingWords": [],
- "missingTrackers": []
+ "missingTrackers": [],
+ "declarationUrl": "https://quefairedemesdechets.ademe.fr/assistant/mentions-legales"
},
{
"slug": "pc",
- "mention": null,
- "maxScore": 0,
- "score": 0,
+ "mention": "Données personnelles",
+ "maxScore": 4,
+ "score": 4,
"missingWords": [],
- "missingTrackers": []
+ "missingTrackers": [],
+ "declarationUrl": "https://quefairedemesdechets.ademe.fr/assistant/donnees-personnelles"
}
],
"betagouv": {
@@ -42929,15 +44027,15 @@
"width": 1920,
"height": 1080,
"url": "https://quefairedemesdechets.ademe.fr",
- "size": 1367.844,
- "nodes": 329,
+ "size": 1090.43,
+ "nodes": 254,
"requests": 35,
"grade": "B",
- "score": 71,
- "ges": 1.58,
- "water": 2.37,
+ "score": 76,
+ "ges": 1.48,
+ "water": 2.22,
"ecoindex_version": "5.4.2",
- "date": "2025-01-26 02:44:29.368366",
+ "date": "2025-03-02 02:35:58.417670",
"page_type": null
}
],
@@ -42946,124 +44044,50 @@
"detected": false
},
"summary": {
- "404": 9,
- "httpGrade": "B+",
+ "404": "A+",
+ "httpGrade": "C",
"apdex": 1,
"apdexGrade": "A",
"uptime": 100,
"uptimeGrade": "A",
+ "nmapGrade": "A",
+ "nmapOpenPortsCount": 2,
+ "nmapOpenPortsGrade": "A",
"dependabotGrade": "D",
"dependabotCount": 13,
"codescanCount": 0,
"codescanGrade": "A",
- "testsslExpireSoon": true,
- "testsslExpireDate": "2025-03-03T10:03:00.000Z",
+ "testsslExpireSoon": false,
+ "testsslExpireDate": "2025-04-29T16:12:00.000Z",
"testsslGrade": "A+",
"cookiesGrade": null,
"cookiesCount": null,
"trackersGrade": null,
"trackersCount": null,
- "zapCount": 9,
+ "zapCount": 7,
"zapGrade": "D",
- "lighthouse_performance": 0.7,
+ "lighthouse_performance": 0.82,
"lighthouse_performanceGrade": "B",
"lighthouse_accessibility": 0.99,
"lighthouse_accessibilityGrade": "A",
- "lighthouse_best-practices": 1,
+ "lighthouse_best-practices": 0.92,
"lighthouse_best-practicesGrade": "A",
- "lighthouse_seo": 1,
+ "lighthouse_seo": 0.98,
"lighthouse_seoGrade": "A",
- "lighthouse_pwa": 0.9,
- "lighthouse_pwaGrade": "A",
+ "lighthouse_pwa": 0.7,
+ "lighthouse_pwaGrade": "B",
"statsGrade": "A",
"githubRepositoryGrade": "A",
"budgetPageGrade": "A",
"declaration-a11y": "B",
- "declaration-rgpd-ml": "F",
- "declaration-rgpd-pc": "F",
+ "declaration-rgpd-ml": "A",
+ "declaration-rgpd-pc": "A",
"ecoindexGrade": "B",
"dsfrGrade": "F"
}
},
{
- "404": [
- {
- "url": {
- "protocol": "https:",
- "slashes": true,
- "auth": null,
- "host": "plusfraichemaville.fr",
- "port": null,
- "hostname": "plusfraichemaville.fr",
- "hash": null,
- "search": null,
- "query": null,
- "pathname": "/projet/gpna@grenoblealpesmetropole.fr",
- "path": "/projet/gpna@grenoblealpesmetropole.fr",
- "href": "https://plusfraichemaville.fr/projet/gpna@grenoblealpesmetropole.fr"
- },
- "link": "https://plusfraichemaville.fr/projet/gpna@grenoblealpesmetropole.fr",
- "line": "https://plusfraichemaville.fr/projet/gpna@grenoblealpesmetropole.fr",
- "broken": true
- },
- {
- "url": {
- "protocol": "https:",
- "slashes": true,
- "auth": null,
- "host": "plusfraichemaville.fr",
- "port": null,
- "hostname": "plusfraichemaville.fr",
- "hash": null,
- "search": null,
- "query": null,
- "pathname": "/projet/www.ent-allard.com",
- "path": "/projet/www.ent-allard.com",
- "href": "https://plusfraichemaville.fr/projet/www.ent-allard.com"
- },
- "link": "https://plusfraichemaville.fr/projet/www.ent-allard.com",
- "line": "https://plusfraichemaville.fr/projet/www.ent-allard.com",
- "broken": true
- },
- {
- "url": {
- "protocol": "https:",
- "slashes": true,
- "auth": null,
- "host": "plusfraichemaville.fr",
- "port": null,
- "hostname": "plusfraichemaville.fr",
- "hash": null,
- "search": "?callbackUrl=%2Fespace-projet",
- "query": "callbackUrl=%2Fespace-projet",
- "pathname": "/api/auth/signin",
- "path": "/api/auth/signin?callbackUrl=%2Fespace-projet",
- "href": "https://plusfraichemaville.fr/api/auth/signin?callbackUrl=%2Fespace-projet"
- },
- "link": "https://plusfraichemaville.fr/api/auth/signin?callbackUrl=%2Fespace-projet",
- "line": "https://plusfraichemaville.fr/api/auth/signin?callbackUrl=%2Fespace-projet",
- "broken": true
- },
- {
- "url": {
- "protocol": "https:",
- "slashes": true,
- "auth": null,
- "host": "plusfraichemaville.fr",
- "port": null,
- "hostname": "plusfraichemaville.fr",
- "hash": null,
- "search": "?callbackUrl=%2Fespace-projet%2Fcreation-projet",
- "query": "callbackUrl=%2Fespace-projet%2Fcreation-projet",
- "pathname": "/api/auth/signin",
- "path": "/api/auth/signin?callbackUrl=%2Fespace-projet%2Fcreation-projet",
- "href": "https://plusfraichemaville.fr/api/auth/signin?callbackUrl=%2Fespace-projet%2Fcreation-projet"
- },
- "link": "https://plusfraichemaville.fr/api/auth/signin?callbackUrl=%2Fespace-projet%2Fcreation-projet",
- "line": "https://plusfraichemaville.fr/api/auth/signin?callbackUrl=%2Fespace-projet%2Fcreation-projet",
- "broken": true
- }
- ],
+ "404": null,
"url": "https://plusfraichemaville.fr",
"category": "startup",
"betaId": "plusfraichemaville",
@@ -43080,244 +44104,210 @@
"incubateur-ademe/plusfraichemaville-cms"
],
"http": {
- "url": "https://plusfraichemaville.fr",
- "algorithm_version": 3,
- "end_time": "Sun, 20 Oct 2024 03:06:12 GMT",
- "grade": "A+",
- "hidden": false,
- "likelihood_indicator": "LOW",
- "response_headers": {
- "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate",
- "Connection": "keep-alive",
- "Content-Encoding": "gzip",
- "Content-Type": "text/html; charset=utf-8",
- "Date": "Sun, 20 Oct 2024 03:06:09 GMT",
- "Transfer-Encoding": "chunked",
- "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding",
- "X-Content-Type-Options": "nosniff",
- "X-Frame-Options": "DENY",
- "X-Powered-By": "Next.js",
- "X-Request-ID": "ebdca30d-e6dc-4cf0-9703-b34eb98d3162",
- "content-security-policy": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-NTFlNTI3ZGMtZGFiZS00Y2Y2LWE0OWYtOTkzZGVmMDFlZTBj' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ ; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr https://cloud.contact.ademe.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ ;",
- "strict-transport-security": "max-age=31536000"
- },
- "scan_id": 57048560,
- "score": 105,
- "start_time": "Sun, 20 Oct 2024 03:06:07 GMT",
- "state": "FINISHED",
- "status_code": 200,
- "tests_failed": 0,
- "tests_passed": 10,
- "tests_quantity": 10,
- "details": {
+ "scan": {
+ "algorithmVersion": 4,
+ "grade": "A+",
+ "error": null,
+ "score": 105,
+ "statusCode": 200,
+ "testsFailed": 0,
+ "testsPassed": 10,
+ "testsQuantity": 10,
+ "responseHeaders": {
+ "date": "Sun, 02 Mar 2025 02:47:02 GMT",
+ "content-type": "text/html; charset=utf-8",
+ "transfer-encoding": "chunked",
+ "connection": "close",
+ "x-request-id": "34cdf1a5-2c0a-43da-80b1-798a04aec803",
+ "x-frame-options": "DENY",
+ "x-content-type-options": "nosniff",
+ "content-security-policy": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-NTEzNGUwMTgtYjBhNi00NDE3LWEyNGUtNzliYzQ4YTUwNjU2' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;",
+ "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding",
+ "link": "; rel=preload; as=\"font\"; crossorigin=\"\"; nonce=\"NTEzNGUwMTgtYjBhNi00NDE3LWEyNGUtNzliYzQ4YTUwNjU2\"; type=\"font/woff2\", ; rel=preload; as=\"image\"; imagesrcset=\"/_next/image?url=%2Fimages%2Fhomepage%2Fhome-hero.jpg&w=640&q=75 640w%2C /_next/image?url=%2Fimages%2Fhomepage%2Fhome-hero.jpg&w=750&q=75 750w%2C /_next/image?url=%2Fimages%2Fhomepage%2Fhome-hero.jpg&w=828&q=75 828w%2C /_next/image?url=%2Fimages%2Fhomepage%2Fhome-hero.jpg&w=1080&q=75 1080w%2C /_next/image?url=%2Fimages%2Fhomepage%2Fhome-hero.jpg&w=1200&q=75 1200w%2C /_next/image?url=%2Fimages%2Fhomepage%2Fhome-hero.jpg&w=1920&q=75 1920w%2C /_next/image?url=%2Fimages%2Fhomepage%2Fhome-hero.jpg&w=2048&q=75 2048w%2C /_next/image?url=%2Fimages%2Fhomepage%2Fhome-hero.jpg&w=3840&q=75 3840w\"; imagesizes=\"100vw\"",
+ "x-powered-by": "Next.js",
+ "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate",
+ "strict-transport-security": "max-age=31536000"
+ }
+ },
+ "tests": {
"content-security-policy": {
"expectation": "csp-implemented-with-no-unsafe",
- "name": "content-security-policy",
- "output": {
- "data": {
- "base-uri": [
- "'self'"
- ],
- "connect-src": [
- "https://sentry.incubateur.net/",
- "https://api-adresse.data.gouv.fr/search/",
- "https://stats.beta.gouv.fr/matomo.php",
- "'self'"
- ],
- "default-src": [
- "'self'"
- ],
- "font-src": [
- "https://fonts.gstatic.com/",
- "'self'"
- ],
- "form-action": [
- "'self'"
- ],
- "frame-ancestors": [
- "'none'"
- ],
- "frame-src": [
- "https://cloud.contact.ademe.fr",
- "https://stats.plusfraichemaville.fr"
- ],
- "img-src": [
- "data:",
- "blob:",
- "https://plusfraichemaville.s3.fr-par.scw.cloud/",
- "'self'"
- ],
- "object-src": [
- "'none'"
- ],
- "script-src": [
- "'nonce-ntflnti3zgmtzgfizs00y2y2lwe0owytotkzzgvmmdflztbj'",
- "'strict-dynamic'"
- ],
- "style-src": [
- "'unsafe-inline'",
- "https://fonts.googleapis.com",
- "'self'"
- ],
- "upgrade-insecure-requests": [
- "'none'"
- ]
- },
- "http": true,
- "meta": false,
- "numPolicies": 1,
- "policy": {
- "antiClickjacking": true,
- "defaultNone": false,
- "insecureBaseUri": false,
- "insecureFormAction": false,
- "insecureSchemeActive": false,
- "insecureSchemePassive": false,
- "strictDynamic": true,
- "unsafeEval": false,
- "unsafeInline": false,
- "unsafeInlineStyle": true,
- "unsafeObjects": false
- }
- },
"pass": true,
"result": "csp-implemented-with-unsafe-inline-in-style-src-only",
- "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": {
+ "default-src": [
+ "'self'"
+ ],
+ "script-src": [
+ "'nonce-nteznguwmtgtyjbhni00nde3lweyngutnzliyzq4ytuwnju2'",
+ "'strict-dynamic'"
+ ],
+ "style-src": [
+ "'self'",
+ "'unsafe-inline'",
+ "https://fonts.googleapis.com"
+ ],
+ "img-src": [
+ "'self'",
+ "blob:",
+ "data:",
+ "https://*.basemaps.cartocdn.com",
+ "https://*.hsforms.com",
+ "https://*.hubspot.com",
+ "https://data.geopf.fr",
+ "https://plusfraichemaville.s3.fr-par.scw.cloud/"
+ ],
+ "font-src": [
+ "'self'",
+ "https://fonts.gstatic.com/"
+ ],
+ "object-src": [
+ "'none'"
+ ],
+ "base-uri": [
+ "'self'"
+ ],
+ "form-action": [
+ "'self'"
+ ],
+ "frame-src": [
+ "https://stats.plusfraichemaville.fr"
+ ],
+ "frame-ancestors": [
+ "'none'"
+ ],
+ "upgrade-insecure-requests": [
+ "'none'"
+ ],
+ "connect-src": [
+ "'self'",
+ "https://*.hscollectedforms.net",
+ "https://api-adresse.data.gouv.fr/search/",
+ "https://sentry.incubateur.net/",
+ "https://stats.beta.gouv.fr/matomo.php"
+ ]
+ },
+ "http": true,
+ "meta": false,
+ "policy": {
+ "antiClickjacking": true,
+ "defaultNone": false,
+ "insecureBaseUri": false,
+ "insecureFormAction": false,
+ "insecureSchemeActive": false,
+ "insecureSchemePassive": false,
+ "strictDynamic": true,
+ "unsafeEval": false,
+ "unsafeInline": false,
+ "unsafeInlineStyle": true,
+ "unsafeObjects": false
+ },
+ "numPolicies": 1
},
"cookies": {
"expectation": "cookies-secure-with-httponly-sessions",
- "name": "cookies",
- "output": {
- "data": null,
- "sameSite": null
- },
"pass": true,
"result": "cookies-not-found",
- "score_description": "No cookies detected",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "sameSite": false
},
"cross-origin-resource-sharing": {
"expectation": "cross-origin-resource-sharing-not-implemented",
- "name": "cross-origin-resource-sharing",
- "output": {
- "data": {
- "acao": null,
- "clientaccesspolicy": null,
- "crossdomain": null
- }
- },
"pass": true,
"result": "cross-origin-resource-sharing-not-implemented",
- "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null
},
"redirection": {
"expectation": "redirection-to-https",
- "name": "redirection",
- "output": {
- "destination": "https://plusfraichemaville.fr/",
- "redirects": true,
- "route": [
- "http://plusfraichemaville.fr/",
- "https://plusfraichemaville.fr/"
- ],
- "status_code": 200
- },
"pass": true,
"result": "redirection-to-https",
- "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "destination": "https://plusfraichemaville.fr/",
+ "redirects": true,
+ "route": [
+ "http://plusfraichemaville.fr/",
+ "https://plusfraichemaville.fr/"
+ ],
+ "statusCode": 200
},
"referrer-policy": {
"expectation": "referrer-policy-private",
- "name": "referrer-policy",
- "output": {
- "data": null,
- "http": false,
- "meta": false
- },
"pass": true,
"result": "referrer-policy-not-implemented",
- "score_description": "Referrer-Policy header not implemented",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
},
"strict-transport-security": {
"expectation": "hsts-implemented-max-age-at-least-six-months",
- "name": "strict-transport-security",
- "output": {
- "data": "max-age=31536000",
- "includeSubDomains": false,
- "max-age": 31536000,
- "preload": false,
- "preloaded": false
- },
"pass": true,
"result": "hsts-implemented-max-age-at-least-six-months",
- "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "max-age=31536000",
+ "includeSubDomains": false,
+ "maxAge": 31536000,
+ "preload": false,
+ "preloaded": false
},
"subresource-integrity": {
"expectation": "sri-implemented-and-external-scripts-loaded-securely",
- "name": "subresource-integrity",
- "output": {
- "data": {}
- },
"pass": true,
"result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin",
- "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": {}
},
"x-content-type-options": {
"expectation": "x-content-type-options-nosniff",
- "name": "x-content-type-options",
- "output": {
- "data": "nosniff"
- },
"pass": true,
"result": "x-content-type-options-nosniff",
- "score_description": "X-Content-Type-Options header set to \"nosniff\"",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "nosniff"
},
"x-frame-options": {
"expectation": "x-frame-options-sameorigin-or-deny",
- "name": "x-frame-options",
- "output": {
- "data": "DENY"
- },
"pass": true,
"result": "x-frame-options-implemented-via-csp",
- "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive",
- "score_modifier": 5
- },
- "x-xss-protection": {
- "expectation": "x-xss-protection-disabled",
- "name": "x-xss-protection",
- "output": {
- "data": null
- },
+ "scoreModifier": 5,
+ "data": "DENY"
+ },
+ "cross-origin-resource-policy": {
+ "expectation": "corp-implemented-with-same-site",
"pass": true,
- "result": "x-xss-protection-not-implemented",
- "score_description": "Deprecated X-XSS-Protection header not implemented",
- "score_modifier": 0
+ "result": "corp-not-implemented",
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
}
}
},
"updownio": {
"token": "y719",
"url": "https://plusfraichemaville.fr",
+ "type": "https",
"alias": "Plus Fraîche Ma Ville",
- "last_status": 200,
"uptime": 100,
"down": false,
"down_since": null,
- "up_since": "2024-12-30T11:45:15Z",
+ "up_since": "2025-02-25T01:03:13Z",
"error": null,
"period": 300,
- "apdex_t": 0.5,
"string_match": "",
"enabled": true,
"published": true,
+ "recipients": [
+ "email:3429082144"
+ ],
+ "last_check_at": "2025-03-02T03:01:43Z",
+ "next_check_at": "2025-03-02T03:06:43Z",
+ "created_at": "2023-11-26T20:00:33Z",
+ "mute_until": null,
+ "last_status": 200,
+ "apdex_t": 0.5,
"disabled_locations": [
"lan",
"mia",
@@ -43326,20 +44316,13 @@
"tok",
"syd"
],
- "recipients": [
- "email:3429082144"
- ],
- "last_check_at": "2025-01-26T03:06:03Z",
- "next_check_at": "2025-01-26T03:11:02Z",
- "created_at": "2023-11-26T20:00:33Z",
- "mute_until": null,
- "favicon_url": "https://plusfraichemaville.fr/favicon.ico",
"custom_headers": {},
+ "favicon_url": "https://plusfraichemaville.fr/favicon.ico",
"http_verb": "GET/HEAD",
"http_body": "",
"ssl": {
- "tested_at": "2025-01-26T02:26:18Z",
- "expires_at": "2025-03-01T20:42:36Z",
+ "tested_at": "2025-03-02T02:26:56Z",
+ "expires_at": "2025-04-30T20:43:37Z",
"valid": true,
"error": null
},
@@ -43347,20 +44330,41 @@
"apdex": 1,
"timings": {
"redirect": 0,
- "namelookup": 8,
- "connection": 23,
+ "namelookup": 7,
+ "connection": 25,
"handshake": 30,
- "response": 75,
- "total": 137
+ "response": 59,
+ "total": 122
}
},
"uptimeGrade": "A",
"apdexGrade": "A"
},
- "nmap": null,
+ "nmap": {
+ "host": "plusfraichemaville.fr",
+ "protocol": "tcp",
+ "closed_ports": "998",
+ "open_ports": [
+ {
+ "service": {
+ "name": "http",
+ "id": "80",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "https",
+ "id": "443",
+ "vulnerabilities": []
+ }
+ }
+ ],
+ "grade": "A"
+ },
"dependabot": {
- "totalCount": 0,
- "grade": "A",
+ "totalCount": 4,
+ "grade": "C",
"repositories": [
{
"url": "https://github.com/incubateur-ademe/plusfraichemaville-cms",
@@ -43373,10 +44377,148 @@
{
"url": "https://github.com/incubateur-ademe/plusfraichemaville-site",
"vulnerabilityAlerts": {
- "totalCount": 0,
- "nodes": []
+ "totalCount": 4,
+ "nodes": [
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-04T15:08:19Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "next"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-7m27-7ghc-44w9"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2024-56332"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9"
+ },
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56332"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-7m27-7ghc-44w9"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-04T15:08:19Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "next"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-7m27-7ghc-44w9"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2024-56332"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9"
+ },
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56332"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-7m27-7ghc-44w9"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-12T10:44:17Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "esbuild"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-67mh-4wv8-2f99"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99"
+ },
+ {
+ "url": "https://github.com/evanw/esbuild/commit/de85afd65edec9ebc44a11e245fd9e9a2e99760d"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-67mh-4wv8-2f99"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-14T19:25:49Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "dompurify"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-vhxf-7vqr-mrjg"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2025-26791"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-26791"
+ },
+ {
+ "url": "https://github.com/cure53/DOMPurify/commit/d18ffcb554e0001748865da03ac75dd7829f0f02"
+ },
+ {
+ "url": "https://ensy.zip/posts/dompurify-323-bypass"
+ },
+ {
+ "url": "https://github.com/cure53/DOMPurify/releases/tag/3.2.4"
+ },
+ {
+ "url": "https://nsysean.github.io/posts/dompurify-323-bypass"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-vhxf-7vqr-mrjg"
+ }
+ ]
+ }
+ }
+ }
+ ]
},
- "grade": "A"
+ "grade": "C"
}
]
},
@@ -43582,7 +44724,7 @@
"ip": "plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "supported"
+ "finding": "not supported"
},
{
"id": "sessionresumption_ID",
@@ -43652,7 +44794,7 @@
"ip": "plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "03C6F93CCB8D85615F254F52781CD3AF84A3"
+ "finding": "0402178AD541DDA915997671966E61CD0824"
},
{
"id": "cert_serialNumberLen",
@@ -43666,21 +44808,21 @@
"ip": "plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "AB2BE7A787C71033AB4EC2D975C74FCEAFA7CF01"
+ "finding": "4D5991B248DD3148312BACABAA345AB189128C62"
},
{
"id": "cert_fingerprintSHA256",
"ip": "plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "15A74DF0BE9B161211408F7FBECF8689147C08C22079A3CC9D53A5B03C9F73A1"
+ "finding": "D7A3222EE5DBFE7FE366AAB2D3F6574722842C947AC17CA594C7D3E3459BFD2A"
},
{
"id": "cert",
"ip": "plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName",
@@ -43736,21 +44878,21 @@
"ip": "plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
- "finding": "34 >= 30 days"
+ "finding": "59 >= 30 days"
},
{
"id": "cert_notBefore",
"ip": "plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-01 20:42"
+ "finding": "2025-01-30 20:43"
},
{
"id": "cert_notAfter",
"ip": "plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
- "finding": "2025-03-01 20:42"
+ "finding": "2025-04-30 20:43"
},
{
"id": "cert_extlifeSpan",
@@ -43897,7 +45039,7 @@
"ip": "plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "1737860574"
+ "finding": "1740883730"
},
{
"id": "HSTS_time",
@@ -43967,7 +45109,7 @@
"ip": "plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
- "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ZWY4NDg3YjktYTBlMy00OGVkLTg5MWUtNmE2YWUzMTlkNzAz' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;"
+ "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-NTEzNGUwMTgtYjBhNi00NDE3LWEyNGUtNzliYzQ4YTUwNjU2' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;"
},
{
"id": "Cache-Control",
@@ -44105,7 +45247,7 @@
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=15A74DF0BE9B161211408F7FBECF8689147C08C22079A3CC9D53A5B03C9F73A1"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D7A3222EE5DBFE7FE366AAB2D3F6574722842C947AC17CA594C7D3E3459BFD2A"
},
{
"id": "LOGJAM",
@@ -44746,7 +45888,7 @@
"ip": "plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "03C6F93CCB8D85615F254F52781CD3AF84A3"
+ "finding": "0402178AD541DDA915997671966E61CD0824"
},
{
"id": "cert_serialNumberLen",
@@ -44760,21 +45902,21 @@
"ip": "plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "AB2BE7A787C71033AB4EC2D975C74FCEAFA7CF01"
+ "finding": "4D5991B248DD3148312BACABAA345AB189128C62"
},
{
"id": "cert_fingerprintSHA256",
"ip": "plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "15A74DF0BE9B161211408F7FBECF8689147C08C22079A3CC9D53A5B03C9F73A1"
+ "finding": "D7A3222EE5DBFE7FE366AAB2D3F6574722842C947AC17CA594C7D3E3459BFD2A"
},
{
"id": "cert",
"ip": "plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName",
@@ -44830,21 +45972,21 @@
"ip": "plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
- "finding": "34 >= 30 days"
+ "finding": "59 >= 30 days"
},
{
"id": "cert_notBefore",
"ip": "plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-01 20:42"
+ "finding": "2025-01-30 20:43"
},
{
"id": "cert_notAfter",
"ip": "plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
- "finding": "2025-03-01 20:42"
+ "finding": "2025-04-30 20:43"
},
{
"id": "cert_extlifeSpan",
@@ -44984,14 +46126,14 @@
"ip": "plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "0 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
"ip": "plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "1737860626"
+ "finding": "1740883805"
},
{
"id": "HSTS_time",
@@ -45061,7 +46203,7 @@
"ip": "plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
- "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ZWY4NDg3YjktYTBlMy00OGVkLTg5MWUtNmE2YWUzMTlkNzAz' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;"
+ "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-NTEzNGUwMTgtYjBhNi00NDE3LWEyNGUtNzliYzQ4YTUwNjU2' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;"
},
{
"id": "Cache-Control",
@@ -45199,7 +46341,7 @@
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=15A74DF0BE9B161211408F7FBECF8689147C08C22079A3CC9D53A5B03C9F73A1"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D7A3222EE5DBFE7FE366AAB2D3F6574722842C947AC17CA594C7D3E3459BFD2A"
},
{
"id": "LOGJAM",
@@ -45572,77 +46714,77 @@
},
{
"id": "service",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -45650,7 +46792,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -45658,7 +46800,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -45666,7 +46808,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -45674,7 +46816,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -45682,7 +46824,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -45690,483 +46832,483 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "59 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-01 20:42"
+ "finding": "2025-01-30 20:43"
},
{
"id": "cert_notAfter",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
- "finding": "2025-03-01 20:42"
+ "finding": "2025-04-30 20:43"
},
{
"id": "cert_extlifeSpan",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http://r11.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "R11 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "R11 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "0 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "1737860679"
+ "finding": "1740883889"
},
{
"id": "HSTS_time",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "X-Powered-By: Next.js"
},
{
"id": "cookie_count",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "DENY"
},
{
"id": "X-Content-Type-Options",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
- "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ZWY4NDg3YjktYTBlMy00OGVkLTg5MWUtNmE2YWUzMTlkNzAz' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;"
+ "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-NTEzNGUwMTgtYjBhNi00NDE3LWEyNGUtNzliYzQ4YTUwNjU2' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;"
},
{
"id": "Cache-Control",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "private, no-cache, no-store, max-age=0, must-revalidate"
},
{
"id": "banner_reverseproxy",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -46174,7 +47316,7 @@
},
{
"id": "heartbleed",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -46183,7 +47325,7 @@
},
{
"id": "CCS",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -46192,7 +47334,7 @@
},
{
"id": "ticketbleed",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -46201,7 +47343,7 @@
},
{
"id": "ROBOT",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -46210,7 +47352,7 @@
},
{
"id": "secure_renego",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -46218,7 +47360,7 @@
},
{
"id": "secure_client_renego",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -46227,7 +47369,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -46236,7 +47378,7 @@
},
{
"id": "BREACH",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -46245,7 +47387,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -46254,14 +47396,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -46270,7 +47412,7 @@
},
{
"id": "FREAK",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -46279,7 +47421,7 @@
},
{
"id": "DROWN",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -46288,16 +47430,16 @@
},
{
"id": "DROWN_hint",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=15A74DF0BE9B161211408F7FBECF8689147C08C22079A3CC9D53A5B03C9F73A1"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D7A3222EE5DBFE7FE366AAB2D3F6574722842C947AC17CA594C7D3E3459BFD2A"
},
{
"id": "LOGJAM",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -46306,7 +47448,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -46315,7 +47457,7 @@
},
{
"id": "BEAST",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -46324,7 +47466,7 @@
},
{
"id": "LUCKY13",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -46333,7 +47475,7 @@
},
{
"id": "winshock",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -46342,7 +47484,7 @@
},
{
"id": "RC4",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -46351,392 +47493,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "plusfraichemaville.fr/109.232.236.90",
+ "ip": "plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -46744,7 +47886,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -46752,7 +47894,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -46760,7 +47902,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -46768,7 +47910,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -46776,7 +47918,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -46784,483 +47926,483 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "59 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-01 20:42"
+ "finding": "2025-01-30 20:43"
},
{
"id": "cert_notAfter",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
- "finding": "2025-03-01 20:42"
+ "finding": "2025-04-30 20:43"
},
{
"id": "cert_extlifeSpan",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "http://r11.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "R11 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "R11 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "0 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "1737860733"
+ "finding": "1740883962"
},
{
"id": "HSTS_time",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "X-Powered-By: Next.js"
},
{
"id": "cookie_count",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "DENY"
},
{
"id": "X-Content-Type-Options",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
- "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ZWY4NDg3YjktYTBlMy00OGVkLTg5MWUtNmE2YWUzMTlkNzAz' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;"
+ "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-NTEzNGUwMTgtYjBhNi00NDE3LWEyNGUtNzliYzQ4YTUwNjU2' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;"
},
{
"id": "Cache-Control",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "private, no-cache, no-store, max-age=0, must-revalidate"
},
{
"id": "banner_reverseproxy",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -47268,7 +48410,7 @@
},
{
"id": "heartbleed",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -47277,7 +48419,7 @@
},
{
"id": "CCS",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -47286,7 +48428,7 @@
},
{
"id": "ticketbleed",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -47295,7 +48437,7 @@
},
{
"id": "ROBOT",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -47304,7 +48446,7 @@
},
{
"id": "secure_renego",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -47312,7 +48454,7 @@
},
{
"id": "secure_client_renego",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -47321,7 +48463,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -47330,7 +48472,7 @@
},
{
"id": "BREACH",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -47339,7 +48481,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -47348,14 +48490,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -47364,7 +48506,7 @@
},
{
"id": "FREAK",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -47373,7 +48515,7 @@
},
{
"id": "DROWN",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -47382,16 +48524,16 @@
},
{
"id": "DROWN_hint",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=15A74DF0BE9B161211408F7FBECF8689147C08C22079A3CC9D53A5B03C9F73A1"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D7A3222EE5DBFE7FE366AAB2D3F6574722842C947AC17CA594C7D3E3459BFD2A"
},
{
"id": "LOGJAM",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -47400,7 +48542,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -47409,7 +48551,7 @@
},
{
"id": "BEAST",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -47418,7 +48560,7 @@
},
{
"id": "LUCKY13",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -47427,7 +48569,7 @@
},
{
"id": "winshock",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -47436,7 +48578,7 @@
},
{
"id": "RC4",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -47445,325 +48587,325 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "scanTime",
- "ip": "plusfraichemaville.fr/5.104.101.30",
+ "ip": "plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "216"
+ "finding": "320"
}
],
"thirdparties": {
@@ -47836,7 +48978,7 @@
"name": "Next.js",
"description": "Next.js is a React framework for developing single page Javascript applications.",
"confidence": 100,
- "version": "14.2.21",
+ "version": "15.0.4",
"icon": "Next.js.svg",
"website": "https://nextjs.org",
"cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*",
@@ -48011,7 +49153,7 @@
"zap": {
"@programName": "ZAP",
"@version": "2.16.0",
- "@generated": "Sun, 26 Jan 2025 02:49:39",
+ "@generated": "Sun, 2 Mar 2025 02:45:49",
"site": [
{
"@name": "https://plusfraichemaville.fr",
@@ -48040,13 +49182,6 @@
"riskdesc": "Low (Medium)",
"desc": "Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.
"
},
- {
- "name": "Private IP Disclosure",
- "riskcode": "1",
- "confidence": "2",
- "riskdesc": "Low (Medium)",
- "desc": "A private IP (such as 10.x.x.x, 172.x.x.x, 192.168.x.x) or an Amazon EC2 private hostname (for example, ip-10-0-56-78) has been found in the HTTP response body. This information might be helpful for further attacks targeting internal systems.
"
- },
{
"name": "Server Leaks Information via \"X-Powered-By\" HTTP Response Header Field(s)",
"riskcode": "1",
@@ -48159,22 +49294,23 @@
},
"nuclei": [
{
- "template": "dns/caa-fingerprint.yaml",
- "template-url": "https://templates.nuclei.sh/public/caa-fingerprint",
- "template-id": "caa-fingerprint",
- "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml",
+ "template": "dns/mx-fingerprint.yaml",
+ "template-url": "https://templates.nuclei.sh/public/mx-fingerprint",
+ "template-id": "mx-fingerprint",
+ "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml",
"info": {
- "name": "CAA Record",
+ "name": "MX Record Detection",
"author": [
"pdteam"
],
"tags": [
"dns",
- "caa"
+ "mx"
],
- "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.",
+ "description": "An MX record was detected. MX records direct emails to a mail exchange server.",
"reference": [
- "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record"
+ "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/",
+ "https://mxtoolbox.com/"
],
"severity": "info",
"metadata": {
@@ -48190,26 +49326,30 @@
"type": "dns",
"host": "plusfraichemaville.fr.",
"matched-at": "plusfraichemaville.fr",
- "timestamp": "2025-01-26T02:37:50.514331785Z",
+ "extracted-results": [
+ "15 472cld6ov2mpoaatig6w2xpqgylxjxaj3ttg6cbtzbox2n42vbcq.mx-verification.google.com.",
+ "1 smtp.google.com."
+ ],
+ "timestamp": "2025-03-02T02:54:18.169448444Z",
"matcher-status": true
},
{
- "template": "dns/txt-fingerprint.yaml",
- "template-url": "https://templates.nuclei.sh/public/txt-fingerprint",
- "template-id": "txt-fingerprint",
- "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml",
+ "template": "dns/caa-fingerprint.yaml",
+ "template-url": "https://templates.nuclei.sh/public/caa-fingerprint",
+ "template-id": "caa-fingerprint",
+ "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml",
"info": {
- "name": "DNS TXT Record Detected",
+ "name": "CAA Record",
"author": [
"pdteam"
],
"tags": [
"dns",
- "txt"
+ "caa"
],
- "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.",
+ "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.",
"reference": [
- "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/"
+ "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record"
],
"severity": "info",
"metadata": {
@@ -48225,31 +49365,24 @@
"type": "dns",
"host": "plusfraichemaville.fr.",
"matched-at": "plusfraichemaville.fr",
- "extracted-results": [
- "\"google-site-verification=2syPzMShlnUMUIKeJU3VNS5jAayjQ_ndLwNjh1LIDJY\""
- ],
- "timestamp": "2025-01-26T02:37:50.515621545Z",
+ "timestamp": "2025-03-02T02:54:18.173900462Z",
"matcher-status": true
},
{
- "template": "dns/mx-fingerprint.yaml",
- "template-url": "https://templates.nuclei.sh/public/mx-fingerprint",
- "template-id": "mx-fingerprint",
- "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml",
+ "template": "dns/nameserver-fingerprint.yaml",
+ "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint",
+ "template-id": "nameserver-fingerprint",
+ "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml",
"info": {
- "name": "MX Record Detection",
+ "name": "NS Record Detection",
"author": [
"pdteam"
],
"tags": [
"dns",
- "mx"
- ],
- "description": "An MX record was detected. MX records direct emails to a mail exchange server.",
- "reference": [
- "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/",
- "https://mxtoolbox.com/"
+ "ns"
],
+ "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.",
"severity": "info",
"metadata": {
"max-request": 1
@@ -48265,27 +49398,30 @@
"host": "plusfraichemaville.fr.",
"matched-at": "plusfraichemaville.fr",
"extracted-results": [
- "1 smtp.google.com.",
- "15 472cld6ov2mpoaatig6w2xpqgylxjxaj3ttg6cbtzbox2n42vbcq.mx-verification.google.com."
+ "ns81.domaincontrol.com.",
+ "ns82.domaincontrol.com."
],
- "timestamp": "2025-01-26T02:37:50.515881001Z",
+ "timestamp": "2025-03-02T02:54:18.225571128Z",
"matcher-status": true
},
{
- "template": "dns/nameserver-fingerprint.yaml",
- "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint",
- "template-id": "nameserver-fingerprint",
- "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml",
+ "template": "dns/txt-fingerprint.yaml",
+ "template-url": "https://templates.nuclei.sh/public/txt-fingerprint",
+ "template-id": "txt-fingerprint",
+ "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml",
"info": {
- "name": "NS Record Detection",
+ "name": "DNS TXT Record Detected",
"author": [
"pdteam"
],
"tags": [
"dns",
- "ns"
+ "txt"
+ ],
+ "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.",
+ "reference": [
+ "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/"
],
- "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.",
"severity": "info",
"metadata": {
"max-request": 1
@@ -48301,10 +49437,9 @@
"host": "plusfraichemaville.fr.",
"matched-at": "plusfraichemaville.fr",
"extracted-results": [
- "ns81.domaincontrol.com.",
- "ns82.domaincontrol.com."
+ "\"google-site-verification=2syPzMShlnUMUIKeJU3VNS5jAayjQ_ndLwNjh1LIDJY\""
],
- "timestamp": "2025-01-26T02:37:50.535718517Z",
+ "timestamp": "2025-03-02T02:54:18.228051154Z",
"matcher-status": true
},
{
@@ -48335,7 +49470,7 @@
"host": "https://plusfraichemaville.fr",
"matched-at": "https://plusfraichemaville.fr",
"ip": "109.232.236.90",
- "timestamp": "2025-01-26T02:40:03.417402614Z",
+ "timestamp": "2025-03-02T02:56:18.642461752Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'",
"matcher-status": true
},
@@ -48368,12 +49503,88 @@
"max-request": 1
}
},
- "matcher-name": "clear-site-data",
+ "matcher-name": "cross-origin-opener-policy",
+ "type": "http",
+ "host": "https://plusfraichemaville.fr",
+ "matched-at": "https://plusfraichemaville.fr",
+ "ip": "109.232.236.90",
+ "timestamp": "2025-03-02T02:56:28.73560498Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/misconfiguration/http-missing-security-headers.yaml",
+ "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
+ "template-id": "http-missing-security-headers",
+ "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "info": {
+ "name": "HTTP Missing Security Headers",
+ "author": [
+ "socketz",
+ "geeknik",
+ "g4l1t0",
+ "convisoappsec",
+ "kurohost",
+ "dawid-czarnecki",
+ "forgedhallpass",
+ "jub0bs",
+ "userdehghani"
+ ],
+ "tags": [
+ "misconfig",
+ "headers",
+ "generic"
+ ],
+ "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
+ "severity": "info",
+ "metadata": {
+ "max-request": 1
+ }
+ },
+ "matcher-name": "cross-origin-resource-policy",
+ "type": "http",
+ "host": "https://plusfraichemaville.fr",
+ "matched-at": "https://plusfraichemaville.fr",
+ "ip": "109.232.236.90",
+ "timestamp": "2025-03-02T02:56:28.735651727Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/misconfiguration/http-missing-security-headers.yaml",
+ "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
+ "template-id": "http-missing-security-headers",
+ "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "info": {
+ "name": "HTTP Missing Security Headers",
+ "author": [
+ "socketz",
+ "geeknik",
+ "g4l1t0",
+ "convisoappsec",
+ "kurohost",
+ "dawid-czarnecki",
+ "forgedhallpass",
+ "jub0bs",
+ "userdehghani"
+ ],
+ "tags": [
+ "misconfig",
+ "headers",
+ "generic"
+ ],
+ "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
+ "severity": "info",
+ "metadata": {
+ "max-request": 1
+ }
+ },
+ "matcher-name": "permissions-policy",
"type": "http",
"host": "https://plusfraichemaville.fr",
"matched-at": "https://plusfraichemaville.fr",
"ip": "109.232.236.90",
- "timestamp": "2025-01-26T02:40:14.073075993Z",
+ "timestamp": "2025-03-02T02:56:28.735667887Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'",
"matcher-status": true
},
@@ -48406,88 +49617,12 @@
"max-request": 1
}
},
- "matcher-name": "cross-origin-embedder-policy",
- "type": "http",
- "host": "https://plusfraichemaville.fr",
- "matched-at": "https://plusfraichemaville.fr",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T02:40:14.073124083Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'",
- "matcher-status": true
- },
- {
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
- "info": {
- "name": "HTTP Missing Security Headers",
- "author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
- ],
- "tags": [
- "misconfig",
- "headers",
- "generic"
- ],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
- "severity": "info",
- "metadata": {
- "max-request": 1
- }
- },
- "matcher-name": "cross-origin-opener-policy",
- "type": "http",
- "host": "https://plusfraichemaville.fr",
- "matched-at": "https://plusfraichemaville.fr",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T02:40:14.073140594Z",
- "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'",
- "matcher-status": true
- },
- {
- "template": "http/misconfiguration/http-missing-security-headers.yaml",
- "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
- "template-id": "http-missing-security-headers",
- "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
- "info": {
- "name": "HTTP Missing Security Headers",
- "author": [
- "socketz",
- "geeknik",
- "g4l1t0",
- "convisoappsec",
- "kurohost",
- "dawid-czarnecki",
- "forgedhallpass",
- "jub0bs",
- "userdehghani"
- ],
- "tags": [
- "misconfig",
- "headers",
- "generic"
- ],
- "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
- "severity": "info",
- "metadata": {
- "max-request": 1
- }
- },
- "matcher-name": "cross-origin-resource-policy",
+ "matcher-name": "x-permitted-cross-domain-policies",
"type": "http",
"host": "https://plusfraichemaville.fr",
"matched-at": "https://plusfraichemaville.fr",
"ip": "109.232.236.90",
- "timestamp": "2025-01-26T02:40:14.073153839Z",
+ "timestamp": "2025-03-02T02:56:28.735682124Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'",
"matcher-status": true
},
@@ -48520,12 +49655,12 @@
"max-request": 1
}
},
- "matcher-name": "permissions-policy",
+ "matcher-name": "referrer-policy",
"type": "http",
"host": "https://plusfraichemaville.fr",
"matched-at": "https://plusfraichemaville.fr",
"ip": "109.232.236.90",
- "timestamp": "2025-01-26T02:40:14.07317071Z",
+ "timestamp": "2025-03-02T02:56:28.735696551Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'",
"matcher-status": true
},
@@ -48558,12 +49693,12 @@
"max-request": 1
}
},
- "matcher-name": "x-permitted-cross-domain-policies",
+ "matcher-name": "clear-site-data",
"type": "http",
"host": "https://plusfraichemaville.fr",
"matched-at": "https://plusfraichemaville.fr",
"ip": "109.232.236.90",
- "timestamp": "2025-01-26T02:40:14.073185438Z",
+ "timestamp": "2025-03-02T02:56:28.735710326Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'",
"matcher-status": true
},
@@ -48596,12 +49731,12 @@
"max-request": 1
}
},
- "matcher-name": "referrer-policy",
+ "matcher-name": "cross-origin-embedder-policy",
"type": "http",
"host": "https://plusfraichemaville.fr",
"matched-at": "https://plusfraichemaville.fr",
"ip": "109.232.236.90",
- "timestamp": "2025-01-26T02:40:14.073198602Z",
+ "timestamp": "2025-03-02T02:56:28.73572312Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'",
"matcher-status": true
},
@@ -48630,7 +49765,7 @@
"host": "https://plusfraichemaville.fr",
"matched-at": "https://plusfraichemaville.fr/robots.txt",
"ip": "109.232.236.90",
- "timestamp": "2025-01-26T02:40:46.166266117Z",
+ "timestamp": "2025-03-02T02:56:57.057287639Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr/robots.txt'",
"matcher-status": true
},
@@ -48677,7 +49812,7 @@
"active"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T02:40:46.937886892Z",
+ "timestamp": "2025-03-02T02:56:58.151874474Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'",
"matcher-status": true
},
@@ -48716,15 +49851,15 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "expirationDate",
+ "extractor-name": "registrationDate",
"type": "http",
"host": "https://plusfraichemaville.fr",
"matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr",
"extracted-results": [
- "2025-12-12T18:46:34.678623Z"
+ "2022-12-12T18:46:34.698709Z"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T02:40:46.937925474Z",
+ "timestamp": "2025-03-02T02:56:58.151926972Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'",
"matcher-status": true
},
@@ -48763,15 +49898,16 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "registrantName",
+ "extractor-name": "nameServers",
"type": "http",
"host": "https://plusfraichemaville.fr",
"matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr",
"extracted-results": [
- "beta.gouv"
+ "ns82.domaincontrol.com",
+ "ns81.domaincontrol.com"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T02:40:46.937942346Z",
+ "timestamp": "2025-03-02T02:56:58.151943533Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'",
"matcher-status": true
},
@@ -48810,15 +49946,15 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "registrantCountry",
+ "extractor-name": "registrantPhone",
"type": "http",
"host": "https://plusfraichemaville.fr",
"matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr",
"extracted-results": [
- "FR"
+ "+33.0677910405"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T02:40:46.937956092Z",
+ "timestamp": "2025-03-02T02:56:58.151957179Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'",
"matcher-status": true
},
@@ -48857,16 +49993,18 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "nameServers",
+ "extractor-name": "registrantAddress",
"type": "http",
"host": "https://plusfraichemaville.fr",
"matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr",
"extracted-results": [
- "ns81.domaincontrol.com",
- "ns82.domaincontrol.com"
+ "39 hameau Boileau, 39 hameau Boileau",
+ "Paris",
+ "75016",
+ "FR"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T02:40:46.937973194Z",
+ "timestamp": "2025-03-02T02:56:58.151975483Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'",
"matcher-status": true
},
@@ -48905,15 +50043,15 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "secureDNS",
+ "extractor-name": "registrantCountry",
"type": "http",
"host": "https://plusfraichemaville.fr",
"matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr",
"extracted-results": [
- "false"
+ "FR"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T02:40:46.937993311Z",
+ "timestamp": "2025-03-02T02:56:58.151997023Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'",
"matcher-status": true
},
@@ -48952,15 +50090,15 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "registrationDate",
+ "extractor-name": "lastChangeDate",
"type": "http",
"host": "https://plusfraichemaville.fr",
"matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr",
"extracted-results": [
- "2022-12-12T18:46:34.698709Z"
+ "2024-11-09T14:16:24.481904Z"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T02:40:46.938013619Z",
+ "timestamp": "2025-03-02T02:56:58.152011781Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'",
"matcher-status": true
},
@@ -48999,15 +50137,15 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "lastChangeDate",
+ "extractor-name": "expirationDate",
"type": "http",
"host": "https://plusfraichemaville.fr",
"matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr",
"extracted-results": [
- "2024-11-09T14:16:24.481904Z"
+ "2025-12-12T18:46:34.678623Z"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T02:40:46.938033156Z",
+ "timestamp": "2025-03-02T02:56:58.152024815Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'",
"matcher-status": true
},
@@ -49046,15 +50184,15 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "registrantOrg",
+ "extractor-name": "registrantName",
"type": "http",
"host": "https://plusfraichemaville.fr",
"matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr",
"extracted-results": [
- "Penelope Liot"
+ "beta.gouv"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T02:40:46.938054356Z",
+ "timestamp": "2025-03-02T02:56:58.152037369Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'",
"matcher-status": true
},
@@ -49093,15 +50231,15 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "registrantEmail",
+ "extractor-name": "registrantOrg",
"type": "http",
"host": "https://plusfraichemaville.fr",
"matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr",
"extracted-results": [
- "penelope.liot@beta.gouv.fr"
+ "Penelope Liot"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T02:40:46.938070736Z",
+ "timestamp": "2025-03-02T02:56:58.152051375Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'",
"matcher-status": true
},
@@ -49140,15 +50278,15 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "registrantPhone",
+ "extractor-name": "registrantEmail",
"type": "http",
"host": "https://plusfraichemaville.fr",
"matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr",
"extracted-results": [
- "+33.0677910405"
+ "penelope.liot@beta.gouv.fr"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T02:40:46.938090623Z",
+ "timestamp": "2025-03-02T02:56:58.152083946Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'",
"matcher-status": true
},
@@ -49187,18 +50325,15 @@
"cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
}
},
- "extractor-name": "registrantAddress",
+ "extractor-name": "secureDNS",
"type": "http",
"host": "https://plusfraichemaville.fr",
"matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr",
"extracted-results": [
- "75016",
- "FR",
- "39 hameau Boileau, 39 hameau Boileau",
- "Paris"
+ "false"
],
"ip": "64.176.191.126",
- "timestamp": "2025-01-26T02:40:46.9381103Z",
+ "timestamp": "2025-03-02T02:56:58.152098142Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'",
"matcher-status": true
},
@@ -49229,7 +50364,7 @@
"Let's Encrypt"
],
"ip": "109.232.236.90",
- "timestamp": "2025-01-26T02:47:46.188916517Z",
+ "timestamp": "2025-03-02T03:03:47.616446688Z",
"matcher-status": true
},
{
@@ -49259,7 +50394,7 @@
"plusfraichemaville.fr"
],
"ip": "109.232.236.90",
- "timestamp": "2025-01-26T02:47:46.189050889Z",
+ "timestamp": "2025-03-02T03:03:47.61660311Z",
"matcher-status": true
},
{
@@ -49290,7 +50425,7 @@
"tls12"
],
"ip": "109.232.236.90",
- "timestamp": "2025-01-26T02:47:47.617590686Z",
+ "timestamp": "2025-03-02T03:03:49.434361553Z",
"matcher-status": true
},
{
@@ -49321,7 +50456,7 @@
"tls13"
],
"ip": "109.232.236.90",
- "timestamp": "2025-01-26T02:47:47.819575682Z",
+ "timestamp": "2025-03-02T03:03:49.658970704Z",
"matcher-status": true
}
],
@@ -49329,7 +50464,7 @@
{
"requestedUrl": "https://plusfraichemaville.fr/",
"finalUrl": "https://plusfraichemaville.fr/",
- "fetchTime": "2025-01-26T03:01:46.090Z",
+ "fetchTime": "2025-03-02T02:46:05.380Z",
"runWarnings": [],
"categories": {
"performance": {
@@ -49340,7 +50475,7 @@
"snapshot"
],
"id": "performance",
- "score": 0.57
+ "score": 0.45
},
"accessibility": {
"title": "Accessibility",
@@ -49392,53 +50527,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 8997,
+ "numericValue": 8845,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 3018,
- "firstMeaningfulPaint": 3018,
- "largestContentfulPaint": 6124,
- "interactive": 8997,
- "speedIndex": 4276,
- "totalBlockingTime": 302,
- "maxPotentialFID": 256,
- "cumulativeLayoutShift": 0.052363483005099826,
- "cumulativeLayoutShiftMainFrame": 0.052363483005099826,
- "totalCumulativeLayoutShift": 0.052363483005099826,
+ "firstContentfulPaint": 3159,
+ "firstMeaningfulPaint": 3159,
+ "largestContentfulPaint": 8012,
+ "interactive": 8845,
+ "speedIndex": 6113,
+ "totalBlockingTime": 522,
+ "maxPotentialFID": 480,
+ "cumulativeLayoutShift": 0.026939320034450955,
+ "cumulativeLayoutShiftMainFrame": 0.026939320034450955,
+ "totalCumulativeLayoutShift": 0.026939320034450955,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 1590564685,
+ "observedTimeOriginTs": 300710371,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 1590564685,
- "observedFirstPaint": 900,
- "observedFirstPaintTs": 1591465129,
- "observedFirstContentfulPaint": 900,
- "observedFirstContentfulPaintTs": 1591465129,
- "observedFirstContentfulPaintAllFrames": 900,
- "observedFirstContentfulPaintAllFramesTs": 1591465129,
- "observedFirstMeaningfulPaint": 900,
- "observedFirstMeaningfulPaintTs": 1591465129,
- "observedLargestContentfulPaint": 1167,
- "observedLargestContentfulPaintTs": 1591731393,
- "observedLargestContentfulPaintAllFrames": 1167,
- "observedLargestContentfulPaintAllFramesTs": 1591731393,
- "observedTraceEnd": 4212,
- "observedTraceEndTs": 1594776500,
- "observedLoad": 1579,
- "observedLoadTs": 1592143847,
- "observedDomContentLoaded": 969,
- "observedDomContentLoadedTs": 1591533316,
- "observedCumulativeLayoutShift": 0.052363483005099826,
- "observedCumulativeLayoutShiftMainFrame": 0.052363483005099826,
- "observedTotalCumulativeLayoutShift": 0.052363483005099826,
- "observedFirstVisualChange": 904,
- "observedFirstVisualChangeTs": 1591468685,
- "observedLastVisualChange": 1538,
- "observedLastVisualChangeTs": 1592102685,
- "observedSpeedIndex": 1086,
- "observedSpeedIndexTs": 1591650498
+ "observedNavigationStartTs": 300710371,
+ "observedFirstPaint": 1132,
+ "observedFirstPaintTs": 301842545,
+ "observedFirstContentfulPaint": 1132,
+ "observedFirstContentfulPaintTs": 301842545,
+ "observedFirstContentfulPaintAllFrames": 1132,
+ "observedFirstContentfulPaintAllFramesTs": 301842545,
+ "observedFirstMeaningfulPaint": 1132,
+ "observedFirstMeaningfulPaintTs": 301842545,
+ "observedLargestContentfulPaint": 1310,
+ "observedLargestContentfulPaintTs": 302019967,
+ "observedLargestContentfulPaintAllFrames": 1310,
+ "observedLargestContentfulPaintAllFramesTs": 302019967,
+ "observedTraceEnd": 4909,
+ "observedTraceEndTs": 305619653,
+ "observedLoad": 2234,
+ "observedLoadTs": 302944315,
+ "observedDomContentLoaded": 1174,
+ "observedDomContentLoadedTs": 301883879,
+ "observedCumulativeLayoutShift": 0.026939320034450955,
+ "observedCumulativeLayoutShiftMainFrame": 0.026939320034450955,
+ "observedTotalCumulativeLayoutShift": 0.026939320034450955,
+ "observedFirstVisualChange": 1144,
+ "observedFirstVisualChangeTs": 301854371,
+ "observedLastVisualChange": 1760,
+ "observedLastVisualChangeTs": 302470371,
+ "observedSpeedIndex": 1260,
+ "observedSpeedIndexTs": 301970254
},
{
"lcpInvalidated": false
@@ -49456,23 +50591,23 @@
"type": "debugdata",
"items": [
{
- "numRequests": 88,
- "numScripts": 34,
+ "numRequests": 91,
+ "numScripts": 36,
"numStylesheets": 5,
"numFonts": 6,
- "numTasks": 1981,
- "numTasksOver10ms": 9,
+ "numTasks": 2092,
+ "numTasksOver10ms": 7,
"numTasksOver25ms": 4,
"numTasksOver50ms": 2,
- "numTasksOver100ms": 0,
+ "numTasksOver100ms": 1,
"numTasksOver500ms": 0,
- "rtt": 6.289999999999999,
- "throughput": 12353589.328289334,
- "maxRtt": 87.45399999999998,
- "maxServerLatency": 120.116,
- "totalByteWeight": 1455875,
- "totalTaskTime": 540.9329999999965,
- "mainDocumentTransferSize": 35426
+ "rtt": 2.105,
+ "throughput": 17832540.471926544,
+ "maxRtt": 109.15899999999999,
+ "maxServerLatency": 38.70500000000001,
+ "totalByteWeight": 1740179,
+ "totalTaskTime": 590.3429999999937,
+ "mainDocumentTransferSize": 35817
}
]
}
@@ -49482,7 +50617,7 @@
{
"requestedUrl": "https://plusfraichemaville.fr/fiches-diagnostic",
"finalUrl": "https://plusfraichemaville.fr/fiches-diagnostic",
- "fetchTime": "2025-01-26T03:01:58.738Z",
+ "fetchTime": "2025-03-02T02:46:19.291Z",
"runWarnings": [],
"categories": {
"performance": {
@@ -49493,7 +50628,7 @@
"snapshot"
],
"id": "performance",
- "score": 0.33
+ "score": 0.55
},
"accessibility": {
"title": "Accessibility",
@@ -49545,53 +50680,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 9855,
+ "numericValue": 9534,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 2805,
- "firstMeaningfulPaint": 2805,
- "largestContentfulPaint": 8309,
- "interactive": 9855,
- "speedIndex": 4317,
- "totalBlockingTime": 2666,
- "maxPotentialFID": 2177,
- "cumulativeLayoutShift": 0.026088256412082247,
- "cumulativeLayoutShiftMainFrame": 0.026088256412082247,
- "totalCumulativeLayoutShift": 0.026088256412082247,
+ "firstContentfulPaint": 3163,
+ "firstMeaningfulPaint": 3163,
+ "largestContentfulPaint": 7392,
+ "interactive": 9534,
+ "speedIndex": 3486,
+ "totalBlockingTime": 336,
+ "maxPotentialFID": 197,
+ "cumulativeLayoutShift": 0.026595545874701608,
+ "cumulativeLayoutShiftMainFrame": 0.026595545874701608,
+ "totalCumulativeLayoutShift": 0.026595545874701608,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 1603146193,
+ "observedTimeOriginTs": 314590382,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 1603146193,
- "observedFirstPaint": 779,
- "observedFirstPaintTs": 1603925058,
- "observedFirstContentfulPaint": 779,
- "observedFirstContentfulPaintTs": 1603925058,
- "observedFirstContentfulPaintAllFrames": 779,
- "observedFirstContentfulPaintAllFramesTs": 1603925058,
- "observedFirstMeaningfulPaint": 779,
- "observedFirstMeaningfulPaintTs": 1603925058,
- "observedLargestContentfulPaint": 1678,
- "observedLargestContentfulPaintTs": 1604823862,
- "observedLargestContentfulPaintAllFrames": 1678,
- "observedLargestContentfulPaintAllFramesTs": 1604823862,
- "observedTraceEnd": 4418,
- "observedTraceEndTs": 1607564367,
- "observedLoad": 1592,
- "observedLoadTs": 1604738330,
- "observedDomContentLoaded": 812,
- "observedDomContentLoadedTs": 1603958678,
- "observedCumulativeLayoutShift": 0.026088256412082247,
- "observedCumulativeLayoutShiftMainFrame": 0.026088256412082247,
- "observedTotalCumulativeLayoutShift": 0.026088256412082247,
- "observedFirstVisualChange": 789,
- "observedFirstVisualChangeTs": 1603935193,
- "observedLastVisualChange": 1906,
- "observedLastVisualChangeTs": 1605052193,
- "observedSpeedIndex": 1450,
- "observedSpeedIndexTs": 1604595980
+ "observedNavigationStartTs": 314590382,
+ "observedFirstPaint": 937,
+ "observedFirstPaintTs": 315527127,
+ "observedFirstContentfulPaint": 937,
+ "observedFirstContentfulPaintTs": 315527127,
+ "observedFirstContentfulPaintAllFrames": 937,
+ "observedFirstContentfulPaintAllFramesTs": 315527127,
+ "observedFirstMeaningfulPaint": 937,
+ "observedFirstMeaningfulPaintTs": 315527127,
+ "observedLargestContentfulPaint": 1233,
+ "observedLargestContentfulPaintTs": 315823809,
+ "observedLargestContentfulPaintAllFrames": 1233,
+ "observedLargestContentfulPaintAllFramesTs": 315823809,
+ "observedTraceEnd": 4447,
+ "observedTraceEndTs": 319037035,
+ "observedLoad": 1797,
+ "observedLoadTs": 316387316,
+ "observedDomContentLoaded": 1093,
+ "observedDomContentLoadedTs": 315683358,
+ "observedCumulativeLayoutShift": 0.026595545874701608,
+ "observedCumulativeLayoutShiftMainFrame": 0.026595545874701608,
+ "observedTotalCumulativeLayoutShift": 0.026595545874701608,
+ "observedFirstVisualChange": 946,
+ "observedFirstVisualChangeTs": 315536382,
+ "observedLastVisualChange": 1580,
+ "observedLastVisualChangeTs": 316170382,
+ "observedSpeedIndex": 1200,
+ "observedSpeedIndexTs": 315790701
},
{
"lcpInvalidated": false
@@ -49609,23 +50744,23 @@
"type": "debugdata",
"items": [
{
- "numRequests": 84,
- "numScripts": 37,
+ "numRequests": 86,
+ "numScripts": 39,
"numStylesheets": 4,
"numFonts": 6,
- "numTasks": 2041,
- "numTasksOver10ms": 10,
- "numTasksOver25ms": 6,
- "numTasksOver50ms": 4,
- "numTasksOver100ms": 2,
- "numTasksOver500ms": 1,
- "rtt": 6.436,
- "throughput": 11480888.456664141,
- "maxRtt": 86.40700000000001,
- "maxServerLatency": 142.53199999999998,
- "totalByteWeight": 1242970,
- "totalTaskTime": 1202.826999999994,
- "mainDocumentTransferSize": 21942
+ "numTasks": 2021,
+ "numTasksOver10ms": 14,
+ "numTasksOver25ms": 5,
+ "numTasksOver50ms": 1,
+ "numTasksOver100ms": 0,
+ "numTasksOver500ms": 0,
+ "rtt": 2.2510000000000003,
+ "throughput": 15123476.74745125,
+ "maxRtt": 109.298,
+ "maxServerLatency": 83.167,
+ "totalByteWeight": 1257394,
+ "totalTaskTime": 598.6919999999941,
+ "mainDocumentTransferSize": 21806
}
]
}
@@ -49635,7 +50770,7 @@
{
"requestedUrl": "https://plusfraichemaville.fr/aide-decision",
"finalUrl": "https://plusfraichemaville.fr/aide-decision",
- "fetchTime": "2025-01-26T03:02:11.561Z",
+ "fetchTime": "2025-03-02T02:46:32.552Z",
"runWarnings": [],
"categories": {
"performance": {
@@ -49646,7 +50781,7 @@
"snapshot"
],
"id": "performance",
- "score": 0.65
+ "score": 0.61
},
"accessibility": {
"title": "Accessibility",
@@ -49698,53 +50833,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 7475,
+ "numericValue": 7859,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 2742,
- "firstMeaningfulPaint": 2742,
- "largestContentfulPaint": 6159,
- "interactive": 7475,
- "speedIndex": 2756,
- "totalBlockingTime": 208,
- "maxPotentialFID": 174,
- "cumulativeLayoutShift": 0.05169656711154514,
- "cumulativeLayoutShiftMainFrame": 0.05169656711154514,
- "totalCumulativeLayoutShift": 0.05169656711154514,
+ "firstContentfulPaint": 3176,
+ "firstMeaningfulPaint": 3176,
+ "largestContentfulPaint": 6002,
+ "interactive": 7859,
+ "speedIndex": 3216,
+ "totalBlockingTime": 258,
+ "maxPotentialFID": 212,
+ "cumulativeLayoutShift": 0.05294011900160048,
+ "cumulativeLayoutShiftMainFrame": 0.05294011900160048,
+ "totalCumulativeLayoutShift": 0.05294011900160048,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 1615974457,
+ "observedTimeOriginTs": 327879456,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 1615974457,
- "observedFirstPaint": 739,
- "observedFirstPaintTs": 1616713266,
- "observedFirstContentfulPaint": 739,
- "observedFirstContentfulPaintTs": 1616713266,
- "observedFirstContentfulPaintAllFrames": 739,
- "observedFirstContentfulPaintAllFramesTs": 1616713266,
- "observedFirstMeaningfulPaint": 739,
- "observedFirstMeaningfulPaintTs": 1616713266,
- "observedLargestContentfulPaint": 932,
- "observedLargestContentfulPaintTs": 1616906191,
- "observedLargestContentfulPaintAllFrames": 932,
- "observedLargestContentfulPaintAllFramesTs": 1616906191,
- "observedTraceEnd": 4967,
- "observedTraceEndTs": 1620941097,
- "observedLoad": 1551,
- "observedLoadTs": 1617525921,
- "observedDomContentLoaded": 781,
- "observedDomContentLoadedTs": 1616755303,
- "observedCumulativeLayoutShift": 0.05169656711154514,
- "observedCumulativeLayoutShiftMainFrame": 0.05169656711154514,
- "observedTotalCumulativeLayoutShift": 0.05169656711154514,
- "observedFirstVisualChange": 744,
- "observedFirstVisualChangeTs": 1616718457,
- "observedLastVisualChange": 1044,
- "observedLastVisualChangeTs": 1617018457,
- "observedSpeedIndex": 874,
- "observedSpeedIndexTs": 1616848490
+ "observedNavigationStartTs": 327879456,
+ "observedFirstPaint": 901,
+ "observedFirstPaintTs": 328780374,
+ "observedFirstContentfulPaint": 901,
+ "observedFirstContentfulPaintTs": 328780374,
+ "observedFirstContentfulPaintAllFrames": 901,
+ "observedFirstContentfulPaintAllFramesTs": 328780374,
+ "observedFirstMeaningfulPaint": 901,
+ "observedFirstMeaningfulPaintTs": 328780374,
+ "observedLargestContentfulPaint": 1029,
+ "observedLargestContentfulPaintTs": 328908396,
+ "observedLargestContentfulPaintAllFrames": 1029,
+ "observedLargestContentfulPaintAllFramesTs": 328908396,
+ "observedTraceEnd": 4331,
+ "observedTraceEndTs": 332210432,
+ "observedLoad": 1681,
+ "observedLoadTs": 329560373,
+ "observedDomContentLoaded": 962,
+ "observedDomContentLoadedTs": 328840980,
+ "observedCumulativeLayoutShift": 0.05294011900160048,
+ "observedCumulativeLayoutShiftMainFrame": 0.05294011900160048,
+ "observedTotalCumulativeLayoutShift": 0.05294011900160048,
+ "observedFirstVisualChange": 907,
+ "observedFirstVisualChangeTs": 328786456,
+ "observedLastVisualChange": 1524,
+ "observedLastVisualChangeTs": 329403456,
+ "observedSpeedIndex": 1001,
+ "observedSpeedIndexTs": 328880844
},
{
"lcpInvalidated": false
@@ -49762,23 +50897,23 @@
"type": "debugdata",
"items": [
{
- "numRequests": 82,
- "numScripts": 31,
+ "numRequests": 80,
+ "numScripts": 30,
"numStylesheets": 5,
"numFonts": 5,
- "numTasks": 2102,
- "numTasksOver10ms": 8,
+ "numTasks": 1971,
+ "numTasksOver10ms": 7,
"numTasksOver25ms": 4,
- "numTasksOver50ms": 0,
+ "numTasksOver50ms": 1,
"numTasksOver100ms": 0,
"numTasksOver500ms": 0,
- "rtt": 6.41,
- "throughput": 9899075.202963762,
- "maxRtt": 89.233,
- "maxServerLatency": 95.96,
- "totalByteWeight": 1004637,
- "totalTaskTime": 458.9009999999958,
- "mainDocumentTransferSize": 16221
+ "rtt": 2.2359999999999998,
+ "throughput": 11225485.14705533,
+ "maxRtt": 111.82100000000001,
+ "maxServerLatency": 111.85900000000001,
+ "totalByteWeight": 996998,
+ "totalTaskTime": 442.62999999999806,
+ "mainDocumentTransferSize": 16091
}
]
}
@@ -49818,12 +50953,12 @@
},
{
"slug": "pc",
- "mention": "Données personnelles",
+ "mention": "Confidentialité",
"maxScore": 4,
"score": 4,
"missingWords": [],
"missingTrackers": [],
- "declarationUrl": "https://plusfraichemaville.fr/politique-de-confidentialite#cookies"
+ "declarationUrl": "https://plusfraichemaville.fr/politique-de-confidentialite"
}
],
"betagouv": {
@@ -49892,15 +51027,15 @@
"width": 1920,
"height": 1080,
"url": "https://plusfraichemaville.fr",
- "size": 2117.398,
- "nodes": 713,
- "requests": 98,
+ "size": 2395.153,
+ "nodes": 701,
+ "requests": 99,
"grade": "E",
- "score": 40,
- "ges": 2.2,
- "water": 3.3,
+ "score": 39,
+ "ges": 2.22,
+ "water": 3.33,
"ecoindex_version": "5.4.2",
- "date": "2025-01-26 02:50:54.126261",
+ "date": "2025-03-02 02:43:16.524625",
"page_type": "website"
}
],
@@ -49909,25 +51044,27 @@
"detected": true
},
"summary": {
- "404": 4,
"httpGrade": "A+",
"apdex": 1,
"apdexGrade": "A",
"uptime": 100,
"uptimeGrade": "A",
- "dependabotGrade": "A",
- "dependabotCount": 0,
- "testsslExpireSoon": true,
- "testsslExpireDate": "2025-03-01T20:42:00.000Z",
+ "nmapGrade": "A",
+ "nmapOpenPortsCount": 2,
+ "nmapOpenPortsGrade": "A",
+ "dependabotGrade": "C",
+ "dependabotCount": 4,
+ "testsslExpireSoon": false,
+ "testsslExpireDate": "2025-04-30T20:43:00.000Z",
"testsslGrade": "A+",
"cookiesGrade": null,
"cookiesCount": null,
"trackersGrade": null,
"trackersCount": null,
- "zapCount": 7,
+ "zapCount": 6,
"zapGrade": "D",
- "lighthouse_performance": 0.57,
- "lighthouse_performanceGrade": "C",
+ "lighthouse_performance": 0.45,
+ "lighthouse_performanceGrade": "D",
"lighthouse_accessibility": 1,
"lighthouse_accessibilityGrade": "A",
"lighthouse_best-practices": 1,
@@ -49988,243 +51125,210 @@
}
},
"http": {
- "url": "https://staging.plusfraichemaville.fr",
- "algorithm_version": 3,
- "end_time": "Sun, 20 Oct 2024 03:10:52 GMT",
- "grade": "A+",
- "hidden": false,
- "likelihood_indicator": "LOW",
- "response_headers": {
- "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate",
- "Connection": "keep-alive",
- "Content-Encoding": "gzip",
- "Content-Type": "text/html; charset=utf-8",
- "Date": "Sun, 20 Oct 2024 03:10:46 GMT",
- "Transfer-Encoding": "chunked",
- "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding",
- "X-Content-Type-Options": "nosniff",
- "X-Frame-Options": "DENY",
- "X-Powered-By": "Next.js",
- "X-Request-ID": "1a55b836-2ae4-4ef4-a9f7-2c766c9f8bae",
- "content-security-policy": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-M2FiZDQwMDgtMTZlYy00NTZjLWIwZWUtNWYwYWYxYmNlMzll' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ ; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ ;",
- "strict-transport-security": "max-age=31536000"
- },
- "scan_id": 57048761,
- "score": 105,
- "start_time": "Sun, 20 Oct 2024 03:10:44 GMT",
- "state": "FINISHED",
- "status_code": 200,
- "tests_failed": 0,
- "tests_passed": 10,
- "tests_quantity": 10,
- "details": {
+ "scan": {
+ "algorithmVersion": 4,
+ "grade": "A+",
+ "error": null,
+ "score": 105,
+ "statusCode": 200,
+ "testsFailed": 0,
+ "testsPassed": 10,
+ "testsQuantity": 10,
+ "responseHeaders": {
+ "date": "Sun, 02 Mar 2025 02:47:37 GMT",
+ "content-type": "text/html; charset=utf-8",
+ "transfer-encoding": "chunked",
+ "connection": "close",
+ "x-request-id": "1ed9f2b3-a5e9-45f4-9f49-22afa727b8af",
+ "x-frame-options": "DENY",
+ "x-content-type-options": "nosniff",
+ "content-security-policy": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ZTMyNTc3ZGMtMjBmMC00ZTY4LTk3ODMtN2VhYjFiMjY3Zjhm' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;",
+ "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding",
+ "link": "; rel=preload; as=\"font\"; crossorigin=\"\"; nonce=\"ZTMyNTc3ZGMtMjBmMC00ZTY4LTk3ODMtN2VhYjFiMjY3Zjhm\"; type=\"font/woff2\", ; rel=preload; as=\"image\"; imagesrcset=\"/_next/image?url=%2Fimages%2Fhomepage%2Fhome-hero.jpg&w=640&q=75 640w%2C /_next/image?url=%2Fimages%2Fhomepage%2Fhome-hero.jpg&w=750&q=75 750w%2C /_next/image?url=%2Fimages%2Fhomepage%2Fhome-hero.jpg&w=828&q=75 828w%2C /_next/image?url=%2Fimages%2Fhomepage%2Fhome-hero.jpg&w=1080&q=75 1080w%2C /_next/image?url=%2Fimages%2Fhomepage%2Fhome-hero.jpg&w=1200&q=75 1200w%2C /_next/image?url=%2Fimages%2Fhomepage%2Fhome-hero.jpg&w=1920&q=75 1920w%2C /_next/image?url=%2Fimages%2Fhomepage%2Fhome-hero.jpg&w=2048&q=75 2048w%2C /_next/image?url=%2Fimages%2Fhomepage%2Fhome-hero.jpg&w=3840&q=75 3840w\"; imagesizes=\"100vw\"",
+ "x-powered-by": "Next.js",
+ "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate",
+ "strict-transport-security": "max-age=31536000"
+ }
+ },
+ "tests": {
"content-security-policy": {
"expectation": "csp-implemented-with-no-unsafe",
- "name": "content-security-policy",
- "output": {
- "data": {
- "base-uri": [
- "'self'"
- ],
- "connect-src": [
- "https://api-adresse.data.gouv.fr/search/",
- "https://sentry.incubateur.net/",
- "https://stats.beta.gouv.fr/matomo.php",
- "'self'"
- ],
- "default-src": [
- "'self'"
- ],
- "font-src": [
- "https://fonts.gstatic.com/",
- "'self'"
- ],
- "form-action": [
- "'self'"
- ],
- "frame-ancestors": [
- "'none'"
- ],
- "frame-src": [
- "https://stats.plusfraichemaville.fr"
- ],
- "img-src": [
- "data:",
- "blob:",
- "https://plusfraichemaville.s3.fr-par.scw.cloud/",
- "'self'"
- ],
- "object-src": [
- "'none'"
- ],
- "script-src": [
- "'nonce-m2fizdqwmdgtmtzlyy00ntzjlwiwzwutnwywywyxymnlmzll'",
- "'strict-dynamic'"
- ],
- "style-src": [
- "https://fonts.googleapis.com",
- "'unsafe-inline'",
- "'self'"
- ],
- "upgrade-insecure-requests": [
- "'none'"
- ]
- },
- "http": true,
- "meta": false,
- "numPolicies": 1,
- "policy": {
- "antiClickjacking": true,
- "defaultNone": false,
- "insecureBaseUri": false,
- "insecureFormAction": false,
- "insecureSchemeActive": false,
- "insecureSchemePassive": false,
- "strictDynamic": true,
- "unsafeEval": false,
- "unsafeInline": false,
- "unsafeInlineStyle": true,
- "unsafeObjects": false
- }
- },
"pass": true,
"result": "csp-implemented-with-unsafe-inline-in-style-src-only",
- "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": {
+ "default-src": [
+ "'self'"
+ ],
+ "script-src": [
+ "'nonce-ztmyntc3zgmtmjbmmc00zty4ltk3odmtn2vhyjfimjy3zjhm'",
+ "'strict-dynamic'"
+ ],
+ "style-src": [
+ "'self'",
+ "'unsafe-inline'",
+ "https://fonts.googleapis.com"
+ ],
+ "img-src": [
+ "'self'",
+ "blob:",
+ "data:",
+ "https://*.basemaps.cartocdn.com",
+ "https://*.hsforms.com",
+ "https://*.hubspot.com",
+ "https://data.geopf.fr",
+ "https://plusfraichemaville.s3.fr-par.scw.cloud/"
+ ],
+ "font-src": [
+ "'self'",
+ "https://fonts.gstatic.com/"
+ ],
+ "object-src": [
+ "'none'"
+ ],
+ "base-uri": [
+ "'self'"
+ ],
+ "form-action": [
+ "'self'"
+ ],
+ "frame-src": [
+ "https://stats.plusfraichemaville.fr"
+ ],
+ "frame-ancestors": [
+ "'none'"
+ ],
+ "upgrade-insecure-requests": [
+ "'none'"
+ ],
+ "connect-src": [
+ "'self'",
+ "https://*.hscollectedforms.net",
+ "https://api-adresse.data.gouv.fr/search/",
+ "https://sentry.incubateur.net/",
+ "https://stats.beta.gouv.fr/matomo.php"
+ ]
+ },
+ "http": true,
+ "meta": false,
+ "policy": {
+ "antiClickjacking": true,
+ "defaultNone": false,
+ "insecureBaseUri": false,
+ "insecureFormAction": false,
+ "insecureSchemeActive": false,
+ "insecureSchemePassive": false,
+ "strictDynamic": true,
+ "unsafeEval": false,
+ "unsafeInline": false,
+ "unsafeInlineStyle": true,
+ "unsafeObjects": false
+ },
+ "numPolicies": 1
},
"cookies": {
"expectation": "cookies-secure-with-httponly-sessions",
- "name": "cookies",
- "output": {
- "data": null,
- "sameSite": null
- },
"pass": true,
"result": "cookies-not-found",
- "score_description": "No cookies detected",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "sameSite": false
},
"cross-origin-resource-sharing": {
"expectation": "cross-origin-resource-sharing-not-implemented",
- "name": "cross-origin-resource-sharing",
- "output": {
- "data": {
- "acao": null,
- "clientaccesspolicy": null,
- "crossdomain": null
- }
- },
"pass": true,
"result": "cross-origin-resource-sharing-not-implemented",
- "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null
},
"redirection": {
"expectation": "redirection-to-https",
- "name": "redirection",
- "output": {
- "destination": "https://staging.plusfraichemaville.fr/",
- "redirects": true,
- "route": [
- "http://staging.plusfraichemaville.fr/",
- "https://staging.plusfraichemaville.fr/"
- ],
- "status_code": 200
- },
"pass": true,
"result": "redirection-to-https",
- "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "destination": "https://staging.plusfraichemaville.fr/",
+ "redirects": true,
+ "route": [
+ "http://staging.plusfraichemaville.fr/",
+ "https://staging.plusfraichemaville.fr/"
+ ],
+ "statusCode": 200
},
"referrer-policy": {
"expectation": "referrer-policy-private",
- "name": "referrer-policy",
- "output": {
- "data": null,
- "http": false,
- "meta": false
- },
"pass": true,
"result": "referrer-policy-not-implemented",
- "score_description": "Referrer-Policy header not implemented",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
},
"strict-transport-security": {
"expectation": "hsts-implemented-max-age-at-least-six-months",
- "name": "strict-transport-security",
- "output": {
- "data": "max-age=31536000",
- "includeSubDomains": false,
- "max-age": 31536000,
- "preload": false,
- "preloaded": false
- },
"pass": true,
"result": "hsts-implemented-max-age-at-least-six-months",
- "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "max-age=31536000",
+ "includeSubDomains": false,
+ "maxAge": 31536000,
+ "preload": false,
+ "preloaded": false
},
"subresource-integrity": {
"expectation": "sri-implemented-and-external-scripts-loaded-securely",
- "name": "subresource-integrity",
- "output": {
- "data": {}
- },
"pass": true,
"result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin",
- "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": {}
},
"x-content-type-options": {
"expectation": "x-content-type-options-nosniff",
- "name": "x-content-type-options",
- "output": {
- "data": "nosniff"
- },
"pass": true,
"result": "x-content-type-options-nosniff",
- "score_description": "X-Content-Type-Options header set to \"nosniff\"",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "nosniff"
},
"x-frame-options": {
"expectation": "x-frame-options-sameorigin-or-deny",
- "name": "x-frame-options",
- "output": {
- "data": "DENY"
- },
"pass": true,
"result": "x-frame-options-implemented-via-csp",
- "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive",
- "score_modifier": 5
- },
- "x-xss-protection": {
- "expectation": "x-xss-protection-disabled",
- "name": "x-xss-protection",
- "output": {
- "data": null
- },
+ "scoreModifier": 5,
+ "data": "DENY"
+ },
+ "cross-origin-resource-policy": {
+ "expectation": "corp-implemented-with-same-site",
"pass": true,
- "result": "x-xss-protection-not-implemented",
- "score_description": "Deprecated X-XSS-Protection header not implemented",
- "score_modifier": 0
+ "result": "corp-not-implemented",
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
}
}
},
"updownio": {
"token": "2hly",
"url": "https://staging.plusfraichemaville.fr",
+ "type": "https",
"alias": "Plus Fraîche Ma Ville - Staging",
- "last_status": 200,
"uptime": 100,
"down": false,
"down_since": null,
- "up_since": "2025-01-26T03:04:55Z",
+ "up_since": "2025-02-26T05:41:55Z",
"error": null,
"period": 300,
- "apdex_t": 0.5,
"string_match": "",
"enabled": true,
"published": true,
+ "recipients": [
+ "email:3429082144"
+ ],
+ "last_check_at": "2025-03-02T02:59:00Z",
+ "next_check_at": "2025-03-02T03:03:59Z",
+ "created_at": "2024-06-24T16:49:07Z",
+ "mute_until": null,
+ "last_status": 200,
+ "apdex_t": 0.5,
"disabled_locations": [
"lan",
"mia",
@@ -50233,44 +51337,58 @@
"tok",
"syd"
],
- "recipients": [
- "email:3429082144"
- ],
- "last_check_at": "2025-01-26T03:04:55Z",
- "next_check_at": "2025-01-26T03:09:54Z",
- "created_at": "2024-06-24T16:49:07Z",
- "mute_until": null,
- "favicon_url": "https://staging.plusfraichemaville.fr/favicon.ico",
"custom_headers": {},
+ "favicon_url": "https://staging.plusfraichemaville.fr/favicon.ico",
"http_verb": "GET/HEAD",
"http_body": "",
"ssl": {
- "tested_at": "2025-01-26T02:47:28Z",
+ "tested_at": "2025-03-02T02:39:10Z",
"expires_at": "2025-04-20T12:46:38Z",
"valid": true,
"error": null
},
"metrics": {
- "apdex": 0.85,
+ "apdex": 1,
"timings": {
"redirect": 0,
- "namelookup": 15,
- "connection": 22,
- "handshake": 28,
- "response": 319,
- "total": 384
+ "namelookup": 9,
+ "connection": 25,
+ "handshake": 30,
+ "response": 79,
+ "total": 143
}
},
"uptimeGrade": "A",
- "apdexGrade": "F"
+ "apdexGrade": "A"
+ },
+ "nmap": {
+ "host": "staging.plusfraichemaville.fr",
+ "protocol": "tcp",
+ "closed_ports": "998",
+ "open_ports": [
+ {
+ "service": {
+ "name": "http",
+ "id": "80",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "https",
+ "id": "443",
+ "vulnerabilities": []
+ }
+ }
+ ],
+ "grade": "A"
},
- "nmap": null,
"dependabot": {
- "totalCount": 0,
- "grade": "A",
+ "totalCount": 4,
+ "grade": "C",
"repositories": [
{
- "url": "https://github.com/incubateur-ademe/plusfraichemaville-site",
+ "url": "https://github.com/incubateur-ademe/plusfraichemaville-cms",
"vulnerabilityAlerts": {
"totalCount": 0,
"nodes": []
@@ -50278,12 +51396,150 @@
"grade": "A"
},
{
- "url": "https://github.com/incubateur-ademe/plusfraichemaville-cms",
+ "url": "https://github.com/incubateur-ademe/plusfraichemaville-site",
"vulnerabilityAlerts": {
- "totalCount": 0,
- "nodes": []
+ "totalCount": 4,
+ "nodes": [
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-04T15:08:19Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "next"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-7m27-7ghc-44w9"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2024-56332"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9"
+ },
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56332"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-7m27-7ghc-44w9"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-04T15:08:19Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "next"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-7m27-7ghc-44w9"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2024-56332"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9"
+ },
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56332"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-7m27-7ghc-44w9"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-12T10:44:17Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "esbuild"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-67mh-4wv8-2f99"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99"
+ },
+ {
+ "url": "https://github.com/evanw/esbuild/commit/de85afd65edec9ebc44a11e245fd9e9a2e99760d"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-67mh-4wv8-2f99"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-14T19:25:49Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "dompurify"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-vhxf-7vqr-mrjg"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2025-26791"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-26791"
+ },
+ {
+ "url": "https://github.com/cure53/DOMPurify/commit/d18ffcb554e0001748865da03ac75dd7829f0f02"
+ },
+ {
+ "url": "https://ensy.zip/posts/dompurify-323-bypass"
+ },
+ {
+ "url": "https://github.com/cure53/DOMPurify/releases/tag/3.2.4"
+ },
+ {
+ "url": "https://nsysean.github.io/posts/dompurify-323-bypass"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-vhxf-7vqr-mrjg"
+ }
+ ]
+ }
+ }
+ }
+ ]
},
- "grade": "A"
+ "grade": "C"
}
]
},
@@ -50291,77 +51547,77 @@
"testssl": [
{
"id": "service",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -50369,7 +51625,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -50377,7 +51633,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -50385,7 +51641,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -50393,7 +51649,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -50401,7 +51657,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -50409,483 +51665,483 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "49 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2025-01-20 12:46"
},
{
"id": "cert_notAfter",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "2025-04-20 12:46"
},
{
"id": "cert_extlifeSpan",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "http://r10.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "R10 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "R10 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "0 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "1737860779"
+ "finding": "1740883738"
},
{
"id": "HSTS_time",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "X-Powered-By: Next.js"
},
{
"id": "cookie_count",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "DENY"
},
{
"id": "X-Content-Type-Options",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
- "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-NmE5YWIzM2QtMDA3OS00M2ZmLThhMTgtNDQwYjAwZDg0YjJm' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;"
+ "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ZTMyNTc3ZGMtMjBmMC00ZTY4LTk3ODMtN2VhYjFiMjY3Zjhm' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;"
},
{
"id": "Cache-Control",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "private, no-cache, no-store, max-age=0, must-revalidate"
},
{
"id": "banner_reverseproxy",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -50893,7 +52149,7 @@
},
{
"id": "heartbleed",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -50902,7 +52158,7 @@
},
{
"id": "CCS",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -50911,7 +52167,7 @@
},
{
"id": "ticketbleed",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -50920,7 +52176,7 @@
},
{
"id": "ROBOT",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -50929,7 +52185,7 @@
},
{
"id": "secure_renego",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -50937,7 +52193,7 @@
},
{
"id": "secure_client_renego",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -50946,7 +52202,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -50955,7 +52211,7 @@
},
{
"id": "BREACH",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -50964,7 +52220,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -50973,14 +52229,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -50989,7 +52245,7 @@
},
{
"id": "FREAK",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -50998,7 +52254,7 @@
},
{
"id": "DROWN",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -51007,7 +52263,7 @@
},
{
"id": "DROWN_hint",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -51016,7 +52272,7 @@
},
{
"id": "LOGJAM",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -51025,7 +52281,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -51034,7 +52290,7 @@
},
{
"id": "BEAST",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -51043,7 +52299,7 @@
},
{
"id": "LUCKY13",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -51052,7 +52308,7 @@
},
{
"id": "winshock",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -51061,7 +52317,7 @@
},
{
"id": "RC4",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -51070,392 +52326,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "staging.plusfraichemaville.fr/109.232.236.90",
+ "ip": "staging.plusfraichemaville.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -51463,7 +52719,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -51471,7 +52727,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -51479,7 +52735,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -51487,7 +52743,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -51495,7 +52751,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -51503,483 +52759,483 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "49 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "2025-01-20 12:46"
},
{
"id": "cert_notAfter",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "2025-04-20 12:46"
},
{
"id": "cert_extlifeSpan",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "http://r10.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "R10 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "R10 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "0 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "1737860832"
+ "finding": "1740883792"
},
{
"id": "HSTS_time",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "X-Powered-By: Next.js"
},
{
"id": "cookie_count",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "DENY"
},
{
"id": "X-Content-Type-Options",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
- "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-NmE5YWIzM2QtMDA3OS00M2ZmLThhMTgtNDQwYjAwZDg0YjJm' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;"
+ "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ZTMyNTc3ZGMtMjBmMC00ZTY4LTk3ODMtN2VhYjFiMjY3Zjhm' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;"
},
{
"id": "Cache-Control",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "private, no-cache, no-store, max-age=0, must-revalidate"
},
{
"id": "banner_reverseproxy",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -51987,7 +53243,7 @@
},
{
"id": "heartbleed",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -51996,7 +53252,7 @@
},
{
"id": "CCS",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -52005,7 +53261,7 @@
},
{
"id": "ticketbleed",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -52014,7 +53270,7 @@
},
{
"id": "ROBOT",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -52023,7 +53279,7 @@
},
{
"id": "secure_renego",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -52031,7 +53287,7 @@
},
{
"id": "secure_client_renego",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -52040,7 +53296,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -52049,7 +53305,7 @@
},
{
"id": "BREACH",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -52058,7 +53314,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -52067,14 +53323,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -52083,7 +53339,7 @@
},
{
"id": "FREAK",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -52092,7 +53348,7 @@
},
{
"id": "DROWN",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -52101,7 +53357,7 @@
},
{
"id": "DROWN_hint",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -52110,7 +53366,7 @@
},
{
"id": "LOGJAM",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -52119,7 +53375,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -52128,7 +53384,7 @@
},
{
"id": "BEAST",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -52137,7 +53393,7 @@
},
{
"id": "LUCKY13",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -52146,7 +53402,7 @@
},
{
"id": "winshock",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -52155,7 +53411,7 @@
},
{
"id": "RC4",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -52164,392 +53420,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "staging.plusfraichemaville.fr/148.253.75.120",
+ "ip": "staging.plusfraichemaville.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -52557,7 +53813,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -52565,7 +53821,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -52573,7 +53829,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -52581,7 +53837,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -52589,7 +53845,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -52597,483 +53853,483 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "49 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2025-01-20 12:46"
},
{
"id": "cert_notAfter",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "2025-04-20 12:46"
},
{
"id": "cert_extlifeSpan",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http://r10.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "R10 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "R10 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "-1 seconds from localtime"
+ "finding": "0 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "1737860887"
+ "finding": "1740883845"
},
{
"id": "HSTS_time",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "X-Powered-By: Next.js"
},
{
"id": "cookie_count",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "DENY"
},
{
"id": "X-Content-Type-Options",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
- "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-NmE5YWIzM2QtMDA3OS00M2ZmLThhMTgtNDQwYjAwZDg0YjJm' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;"
+ "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ZTMyNTc3ZGMtMjBmMC00ZTY4LTk3ODMtN2VhYjFiMjY3Zjhm' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;"
},
{
"id": "Cache-Control",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "private, no-cache, no-store, max-age=0, must-revalidate"
},
{
"id": "banner_reverseproxy",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -53081,7 +54337,7 @@
},
{
"id": "heartbleed",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -53090,7 +54346,7 @@
},
{
"id": "CCS",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -53099,7 +54355,7 @@
},
{
"id": "ticketbleed",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -53108,7 +54364,7 @@
},
{
"id": "ROBOT",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -53117,7 +54373,7 @@
},
{
"id": "secure_renego",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -53125,7 +54381,7 @@
},
{
"id": "secure_client_renego",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -53134,7 +54390,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -53143,7 +54399,7 @@
},
{
"id": "BREACH",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -53152,7 +54408,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -53161,14 +54417,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -53177,7 +54433,7 @@
},
{
"id": "FREAK",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -53186,7 +54442,7 @@
},
{
"id": "DROWN",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -53195,7 +54451,7 @@
},
{
"id": "DROWN_hint",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -53204,7 +54460,7 @@
},
{
"id": "LOGJAM",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -53213,7 +54469,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -53222,7 +54478,7 @@
},
{
"id": "BEAST",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -53231,7 +54487,7 @@
},
{
"id": "LUCKY13",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -53240,7 +54496,7 @@
},
{
"id": "winshock",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -53249,7 +54505,7 @@
},
{
"id": "RC4",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -53258,392 +54514,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "staging.plusfraichemaville.fr/109.232.233.130",
+ "ip": "staging.plusfraichemaville.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -53651,7 +54907,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -53659,7 +54915,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -53667,7 +54923,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -53675,7 +54931,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -53683,7 +54939,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -53691,483 +54947,483 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "49 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "2025-01-20 12:46"
},
{
"id": "cert_notAfter",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "2025-04-20 12:46"
},
{
"id": "cert_extlifeSpan",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "http://r10.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "R10 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "R10 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "0 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "1737860945"
+ "finding": "1740883898"
},
{
"id": "HSTS_time",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "365 days (=31536000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "only for this domain"
},
{
"id": "HSTS_preload",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "X-Powered-By: Next.js"
},
{
"id": "cookie_count",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "DENY"
},
{
"id": "X-Content-Type-Options",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
- "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-NmE5YWIzM2QtMDA3OS00M2ZmLThhMTgtNDQwYjAwZDg0YjJm' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;"
+ "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ZTMyNTc3ZGMtMjBmMC00ZTY4LTk3ODMtN2VhYjFiMjY3Zjhm' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.basemaps.cartocdn.com https://*.hsforms.com https://data.geopf.fr https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;"
},
{
"id": "Cache-Control",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "private, no-cache, no-store, max-age=0, must-revalidate"
},
{
"id": "banner_reverseproxy",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -54175,7 +55431,7 @@
},
{
"id": "heartbleed",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -54184,7 +55440,7 @@
},
{
"id": "CCS",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -54193,7 +55449,7 @@
},
{
"id": "ticketbleed",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -54202,7 +55458,7 @@
},
{
"id": "ROBOT",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -54211,7 +55467,7 @@
},
{
"id": "secure_renego",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -54219,7 +55475,7 @@
},
{
"id": "secure_client_renego",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -54228,7 +55484,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -54237,7 +55493,7 @@
},
{
"id": "BREACH",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -54246,7 +55502,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -54255,14 +55511,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -54271,7 +55527,7 @@
},
{
"id": "FREAK",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -54280,7 +55536,7 @@
},
{
"id": "DROWN",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -54289,7 +55545,7 @@
},
{
"id": "DROWN_hint",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -54298,7 +55554,7 @@
},
{
"id": "LOGJAM",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -54307,7 +55563,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -54316,7 +55572,7 @@
},
{
"id": "BEAST",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -54325,7 +55581,7 @@
},
{
"id": "LUCKY13",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -54334,7 +55590,7 @@
},
{
"id": "winshock",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -54343,7 +55599,7 @@
},
{
"id": "RC4",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -54352,325 +55608,325 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "scanTime",
- "ip": "staging.plusfraichemaville.fr/5.104.101.30",
+ "ip": "staging.plusfraichemaville.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "224"
+ "finding": "218"
}
],
"thirdparties": {
@@ -54743,7 +55999,7 @@
"name": "Next.js",
"description": "Next.js is a React framework for developing single page Javascript applications.",
"confidence": 100,
- "version": "15.1.4",
+ "version": "15.0.4",
"icon": "Next.js.svg",
"website": "https://nextjs.org",
"cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*",
@@ -54882,7 +56138,7 @@
"zap": {
"@programName": "ZAP",
"@version": "2.16.0",
- "@generated": "Sun, 26 Jan 2025 03:01:02",
+ "@generated": "Sun, 2 Mar 2025 02:46:27",
"site": [
{
"@name": "https://staging.plusfraichemaville.fr",
@@ -54891,11 +56147,18 @@
"@ssl": "true",
"alerts": [
{
- "name": "Content Security Policy (CSP) Header Not Set",
+ "name": "CSP: style-src unsafe-inline",
"riskcode": "2",
"confidence": "3",
"riskdesc": "Medium (High)",
- "desc": "Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.
"
+ "desc": "Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.
"
+ },
+ {
+ "name": "Insufficient Site Isolation Against Spectre Vulnerability",
+ "riskcode": "1",
+ "confidence": "2",
+ "riskdesc": "Low (Medium)",
+ "desc": "Cross-Origin-Resource-Policy header is an opt-in header designed to counter side-channels attacks like Spectre. Resource should be specifically set as shareable amongst different origins.
"
},
{
"name": "Permissions Policy Header Not Set",
@@ -54904,6 +56167,62 @@
"riskdesc": "Low (Medium)",
"desc": "Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.
"
},
+ {
+ "name": "Private IP Disclosure",
+ "riskcode": "1",
+ "confidence": "2",
+ "riskdesc": "Low (Medium)",
+ "desc": "A private IP (such as 10.x.x.x, 172.x.x.x, 192.168.x.x) or an Amazon EC2 private hostname (for example, ip-10-0-56-78) has been found in the HTTP response body. This information might be helpful for further attacks targeting internal systems.
"
+ },
+ {
+ "name": "Server Leaks Information via \"X-Powered-By\" HTTP Response Header Field(s)",
+ "riskcode": "1",
+ "confidence": "2",
+ "riskdesc": "Low (Medium)",
+ "desc": "The web/application server is leaking information via one or more \"X-Powered-By\" HTTP response headers. Access to such information may facilitate attackers identifying other frameworks/components your web application is reliant upon and the vulnerabilities such components may be subject to.
"
+ },
+ {
+ "name": "Timestamp Disclosure - Unix",
+ "riskcode": "1",
+ "confidence": "1",
+ "riskdesc": "Low (Low)",
+ "desc": "A timestamp was disclosed by the application/web server. - Unix
"
+ },
+ {
+ "name": "X-Content-Type-Options Header Missing",
+ "riskcode": "1",
+ "confidence": "2",
+ "riskdesc": "Low (Medium)",
+ "desc": "The Anti-MIME-Sniffing header X-Content-Type-Options was not set to 'nosniff'. This allows older versions of Internet Explorer and Chrome to perform MIME-sniffing on the response body, potentially causing the response body to be interpreted and displayed as a content type other than the declared content type. Current (early 2014) and legacy versions of Firefox will use the declared content type (if one is set), rather than performing MIME-sniffing.
"
+ },
+ {
+ "name": "Base64 Disclosure",
+ "riskcode": "0",
+ "confidence": "2",
+ "riskdesc": "Informational (Medium)",
+ "desc": "Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).
"
+ },
+ {
+ "name": "Content-Type Header Missing",
+ "riskcode": "0",
+ "confidence": "2",
+ "riskdesc": "Informational (Medium)",
+ "desc": "The Content-Type header was either missing or empty.
"
+ },
+ {
+ "name": "Information Disclosure - Suspicious Comments",
+ "riskcode": "0",
+ "confidence": "1",
+ "riskdesc": "Informational (Low)",
+ "desc": "The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.
"
+ },
+ {
+ "name": "Modern Web Application",
+ "riskcode": "0",
+ "confidence": "2",
+ "riskdesc": "Informational (Medium)",
+ "desc": "The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.
"
+ },
{
"name": "Non-Storable Content",
"riskcode": "0",
@@ -54911,6 +56230,13 @@
"riskdesc": "Informational (Medium)",
"desc": "The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.
"
},
+ {
+ "name": "Re-examine Cache-control Directives",
+ "riskcode": "0",
+ "confidence": "1",
+ "riskdesc": "Informational (Low)",
+ "desc": "The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.
"
+ },
{
"name": "Sec-Fetch-Dest Header is Missing",
"riskcode": "0",
@@ -54938,6 +56264,20 @@
"confidence": "3",
"riskdesc": "Informational (High)",
"desc": "Specifies if a navigation request was initiated by a user.
"
+ },
+ {
+ "name": "Storable but Non-Cacheable Content",
+ "riskcode": "0",
+ "confidence": "2",
+ "riskdesc": "Informational (Medium)",
+ "desc": "The response contents are storable by caching components such as proxy servers, but will not be retrieved directly from the cache, without validating the request upstream, in response to similar requests from other users.
"
+ },
+ {
+ "name": "User Controllable HTML Element Attribute (Potential XSS)",
+ "riskcode": "0",
+ "confidence": "1",
+ "riskdesc": "Informational (Low)",
+ "desc": "This check looks at user-supplied input in query string parameters and POST data to identify where certain HTML attribute values might be controlled. This provides hot-spot detection for XSS (cross-site scripting) that will require further review by a security analyst to determine exploitability.
"
}
]
}
@@ -55469,7 +56809,7 @@
{
"requestedUrl": "https://staging.plusfraichemaville.fr/",
"finalUrl": "https://staging.plusfraichemaville.fr/",
- "fetchTime": "2025-01-26T03:05:11.770Z",
+ "fetchTime": "2025-03-02T02:46:42.890Z",
"runWarnings": [],
"categories": {
"performance": {
@@ -55480,7 +56820,7 @@
"snapshot"
],
"id": "performance",
- "score": 0.4
+ "score": 0.45
},
"accessibility": {
"title": "Accessibility",
@@ -55532,53 +56872,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 10292,
+ "numericValue": 10122,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 3086,
- "firstMeaningfulPaint": 3086,
- "largestContentfulPaint": 9133,
- "interactive": 10292,
- "speedIndex": 5713,
- "totalBlockingTime": 723,
- "maxPotentialFID": 525,
- "cumulativeLayoutShift": 0.026939320034450955,
- "cumulativeLayoutShiftMainFrame": 0.026939320034450955,
- "totalCumulativeLayoutShift": 0.026939320034450955,
+ "firstContentfulPaint": 3291,
+ "firstMeaningfulPaint": 3291,
+ "largestContentfulPaint": 9114,
+ "interactive": 10122,
+ "speedIndex": 6103,
+ "totalBlockingTime": 467,
+ "maxPotentialFID": 382,
+ "cumulativeLayoutShift": 0.025976117451985678,
+ "cumulativeLayoutShiftMainFrame": 0.025976117451985678,
+ "totalCumulativeLayoutShift": 0.025976117451985678,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 1025191602,
+ "observedTimeOriginTs": 376591138,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 1025191602,
- "observedFirstPaint": 987,
- "observedFirstPaintTs": 1026178926,
- "observedFirstContentfulPaint": 987,
- "observedFirstContentfulPaintTs": 1026178926,
- "observedFirstContentfulPaintAllFrames": 987,
- "observedFirstContentfulPaintAllFramesTs": 1026178926,
- "observedFirstMeaningfulPaint": 987,
- "observedFirstMeaningfulPaintTs": 1026178926,
- "observedLargestContentfulPaint": 1404,
- "observedLargestContentfulPaintTs": 1026595815,
- "observedLargestContentfulPaintAllFrames": 1404,
- "observedLargestContentfulPaintAllFramesTs": 1026595815,
- "observedTraceEnd": 4881,
- "observedTraceEndTs": 1030073078,
- "observedLoad": 2122,
- "observedLoadTs": 1027313796,
- "observedDomContentLoaded": 1117,
- "observedDomContentLoadedTs": 1026308349,
- "observedCumulativeLayoutShift": 0.026939320034450955,
- "observedCumulativeLayoutShiftMainFrame": 0.026939320034450955,
- "observedTotalCumulativeLayoutShift": 0.026939320034450955,
- "observedFirstVisualChange": 1000,
- "observedFirstVisualChangeTs": 1026191602,
- "observedLastVisualChange": 1617,
- "observedLastVisualChangeTs": 1026808602,
- "observedSpeedIndex": 1274,
- "observedSpeedIndexTs": 1026465773
+ "observedNavigationStartTs": 376591138,
+ "observedFirstPaint": 882,
+ "observedFirstPaintTs": 377472681,
+ "observedFirstContentfulPaint": 882,
+ "observedFirstContentfulPaintTs": 377472681,
+ "observedFirstContentfulPaintAllFrames": 882,
+ "observedFirstContentfulPaintAllFramesTs": 377472681,
+ "observedFirstMeaningfulPaint": 882,
+ "observedFirstMeaningfulPaintTs": 377472681,
+ "observedLargestContentfulPaint": 1448,
+ "observedLargestContentfulPaintTs": 378039481,
+ "observedLargestContentfulPaintAllFrames": 1448,
+ "observedLargestContentfulPaintAllFramesTs": 378039481,
+ "observedTraceEnd": 4309,
+ "observedTraceEndTs": 380899973,
+ "observedLoad": 1666,
+ "observedLoadTs": 378257051,
+ "observedDomContentLoaded": 874,
+ "observedDomContentLoadedTs": 377465079,
+ "observedCumulativeLayoutShift": 0.025976117451985678,
+ "observedCumulativeLayoutShiftMainFrame": 0.025976117451985678,
+ "observedTotalCumulativeLayoutShift": 0.025976117451985678,
+ "observedFirstVisualChange": 893,
+ "observedFirstVisualChangeTs": 377484138,
+ "observedLastVisualChange": 1543,
+ "observedLastVisualChangeTs": 378134138,
+ "observedSpeedIndex": 1257,
+ "observedSpeedIndexTs": 377848552
},
{
"lcpInvalidated": false
@@ -55596,23 +56936,23 @@
"type": "debugdata",
"items": [
{
- "numRequests": 92,
- "numScripts": 38,
+ "numRequests": 89,
+ "numScripts": 35,
"numStylesheets": 5,
"numFonts": 6,
- "numTasks": 2310,
- "numTasksOver10ms": 9,
+ "numTasks": 2022,
+ "numTasksOver10ms": 7,
"numTasksOver25ms": 5,
- "numTasksOver50ms": 4,
- "numTasksOver100ms": 1,
+ "numTasksOver50ms": 2,
+ "numTasksOver100ms": 0,
"numTasksOver500ms": 0,
- "rtt": 6.407,
- "throughput": 11673878.161916524,
- "maxRtt": 86.45,
- "maxServerLatency": 179.563,
- "totalByteWeight": 1732747,
- "totalTaskTime": 739.4589999999984,
- "mainDocumentTransferSize": 37494
+ "rtt": 1.992,
+ "throughput": 11532885.406899309,
+ "maxRtt": 87.516,
+ "maxServerLatency": 338.70699999999994,
+ "totalByteWeight": 1713918,
+ "totalTaskTime": 587.2369999999947,
+ "mainDocumentTransferSize": 35806
}
]
}
@@ -55622,7 +56962,7 @@
{
"requestedUrl": "https://staging.plusfraichemaville.fr/fiches-diagnostic",
"finalUrl": "https://staging.plusfraichemaville.fr/fiches-diagnostic",
- "fetchTime": "2025-01-26T03:05:25.573Z",
+ "fetchTime": "2025-03-02T02:46:55.926Z",
"runWarnings": [],
"categories": {
"performance": {
@@ -55633,7 +56973,7 @@
"snapshot"
],
"id": "performance",
- "score": 0.41
+ "score": 0.55
},
"accessibility": {
"title": "Accessibility",
@@ -55685,53 +57025,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 9887,
+ "numericValue": 8941,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 3200,
- "firstMeaningfulPaint": 3200,
- "largestContentfulPaint": 7328,
- "interactive": 9887,
- "speedIndex": 3485,
- "totalBlockingTime": 896,
- "maxPotentialFID": 354,
- "cumulativeLayoutShift": 0.05636647033691407,
- "cumulativeLayoutShiftMainFrame": 0.05636647033691407,
- "totalCumulativeLayoutShift": 0.05636647033691407,
+ "firstContentfulPaint": 3073,
+ "firstMeaningfulPaint": 3073,
+ "largestContentfulPaint": 6890,
+ "interactive": 8941,
+ "speedIndex": 4307,
+ "totalBlockingTime": 326,
+ "maxPotentialFID": 218,
+ "cumulativeLayoutShift": 0.05480131149291992,
+ "cumulativeLayoutShiftMainFrame": 0.05480131149291992,
+ "totalCumulativeLayoutShift": 0.05480131149291992,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 1038969251,
+ "observedTimeOriginTs": 389634210,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 1038969251,
- "observedFirstPaint": 909,
- "observedFirstPaintTs": 1039878465,
- "observedFirstContentfulPaint": 909,
- "observedFirstContentfulPaintTs": 1039878465,
- "observedFirstContentfulPaintAllFrames": 909,
- "observedFirstContentfulPaintAllFramesTs": 1039878465,
- "observedFirstMeaningfulPaint": 909,
- "observedFirstMeaningfulPaintTs": 1039878465,
- "observedLargestContentfulPaint": 1209,
- "observedLargestContentfulPaintTs": 1040177862,
- "observedLargestContentfulPaintAllFrames": 1209,
- "observedLargestContentfulPaintAllFramesTs": 1040177862,
- "observedTraceEnd": 4463,
- "observedTraceEndTs": 1043431753,
- "observedLoad": 1795,
- "observedLoadTs": 1040764583,
- "observedDomContentLoaded": 1019,
- "observedDomContentLoadedTs": 1039988545,
- "observedCumulativeLayoutShift": 0.05636647033691407,
- "observedCumulativeLayoutShiftMainFrame": 0.05636647033691407,
- "observedTotalCumulativeLayoutShift": 0.05636647033691407,
- "observedFirstVisualChange": 905,
- "observedFirstVisualChangeTs": 1039874251,
- "observedLastVisualChange": 1589,
- "observedLastVisualChangeTs": 1040558251,
- "observedSpeedIndex": 1182,
- "observedSpeedIndexTs": 1040151726
+ "observedNavigationStartTs": 389634210,
+ "observedFirstPaint": 811,
+ "observedFirstPaintTs": 390445052,
+ "observedFirstContentfulPaint": 811,
+ "observedFirstContentfulPaintTs": 390445052,
+ "observedFirstContentfulPaintAllFrames": 811,
+ "observedFirstContentfulPaintAllFramesTs": 390445052,
+ "observedFirstMeaningfulPaint": 811,
+ "observedFirstMeaningfulPaintTs": 390445052,
+ "observedLargestContentfulPaint": 1086,
+ "observedLargestContentfulPaintTs": 390720358,
+ "observedLargestContentfulPaintAllFrames": 1086,
+ "observedLargestContentfulPaintAllFramesTs": 390720358,
+ "observedTraceEnd": 3918,
+ "observedTraceEndTs": 393552178,
+ "observedLoad": 1310,
+ "observedLoadTs": 390944197,
+ "observedDomContentLoaded": 968,
+ "observedDomContentLoadedTs": 390602584,
+ "observedCumulativeLayoutShift": 0.05480131149291992,
+ "observedCumulativeLayoutShiftMainFrame": 0.05480131149291992,
+ "observedTotalCumulativeLayoutShift": 0.05480131149291992,
+ "observedFirstVisualChange": 816,
+ "observedFirstVisualChangeTs": 390450210,
+ "observedLastVisualChange": 1450,
+ "observedLastVisualChangeTs": 391084210,
+ "observedSpeedIndex": 1057,
+ "observedSpeedIndexTs": 390691038
},
{
"lcpInvalidated": false
@@ -55749,23 +57089,23 @@
"type": "debugdata",
"items": [
{
- "numRequests": 87,
- "numScripts": 41,
+ "numRequests": 84,
+ "numScripts": 38,
"numStylesheets": 4,
"numFonts": 6,
- "numTasks": 2147,
- "numTasksOver10ms": 14,
- "numTasksOver25ms": 7,
- "numTasksOver50ms": 4,
+ "numTasks": 1952,
+ "numTasksOver10ms": 12,
+ "numTasksOver25ms": 6,
+ "numTasksOver50ms": 2,
"numTasksOver100ms": 0,
"numTasksOver500ms": 0,
- "rtt": 6.270000000000001,
- "throughput": 11980293.64557198,
- "maxRtt": 85.453,
- "maxServerLatency": 308.218,
- "totalByteWeight": 1290354,
- "totalTaskTime": 772.4089999999964,
- "mainDocumentTransferSize": 23478
+ "rtt": 2.1980000000000004,
+ "throughput": 17909929.851279587,
+ "maxRtt": 87.19300000000001,
+ "maxServerLatency": 127.97599999999998,
+ "totalByteWeight": 1232052,
+ "totalTaskTime": 569.9789999999975,
+ "mainDocumentTransferSize": 22042
}
]
}
@@ -55775,7 +57115,7 @@
{
"requestedUrl": "https://staging.plusfraichemaville.fr/aide-decision",
"finalUrl": "https://staging.plusfraichemaville.fr/aide-decision",
- "fetchTime": "2025-01-26T03:05:38.798Z",
+ "fetchTime": "2025-03-02T02:47:08.678Z",
"runWarnings": [],
"categories": {
"performance": {
@@ -55786,7 +57126,7 @@
"snapshot"
],
"id": "performance",
- "score": 0.49
+ "score": 0.59
},
"accessibility": {
"title": "Accessibility",
@@ -55838,53 +57178,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 8246,
+ "numericValue": 7908,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 3018,
- "firstMeaningfulPaint": 3018,
- "largestContentfulPaint": 7124,
- "interactive": 8246,
- "speedIndex": 3127,
- "totalBlockingTime": 629,
- "maxPotentialFID": 298,
- "cumulativeLayoutShift": 0.025477117432488337,
- "cumulativeLayoutShiftMainFrame": 0.025477117432488337,
- "totalCumulativeLayoutShift": 0.025477117432488337,
+ "firstContentfulPaint": 3069,
+ "firstMeaningfulPaint": 3069,
+ "largestContentfulPaint": 7228,
+ "interactive": 7908,
+ "speedIndex": 3214,
+ "totalBlockingTime": 280,
+ "maxPotentialFID": 227,
+ "cumulativeLayoutShift": 0.025479511790805393,
+ "cumulativeLayoutShiftMainFrame": 0.025479511790805393,
+ "totalCumulativeLayoutShift": 0.025479511790805393,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 1052198415,
+ "observedTimeOriginTs": 402390027,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 1052198415,
- "observedFirstPaint": 860,
- "observedFirstPaintTs": 1053058342,
- "observedFirstContentfulPaint": 860,
- "observedFirstContentfulPaintTs": 1053058342,
- "observedFirstContentfulPaintAllFrames": 860,
- "observedFirstContentfulPaintAllFramesTs": 1053058342,
- "observedFirstMeaningfulPaint": 860,
- "observedFirstMeaningfulPaintTs": 1053058342,
- "observedLargestContentfulPaint": 1079,
- "observedLargestContentfulPaintTs": 1053277621,
- "observedLargestContentfulPaintAllFrames": 1079,
- "observedLargestContentfulPaintAllFramesTs": 1053277621,
- "observedTraceEnd": 4627,
- "observedTraceEndTs": 1056825625,
- "observedLoad": 1924,
- "observedLoadTs": 1054122828,
- "observedDomContentLoaded": 926,
- "observedDomContentLoadedTs": 1053123920,
- "observedCumulativeLayoutShift": 0.025477117432488337,
- "observedCumulativeLayoutShiftMainFrame": 0.025477117432488337,
- "observedTotalCumulativeLayoutShift": 0.025477117432488337,
- "observedFirstVisualChange": 859,
- "observedFirstVisualChangeTs": 1053057415,
- "observedLastVisualChange": 1626,
- "observedLastVisualChangeTs": 1053824415,
- "observedSpeedIndex": 1011,
- "observedSpeedIndexTs": 1053209370
+ "observedNavigationStartTs": 402390027,
+ "observedFirstPaint": 939,
+ "observedFirstPaintTs": 403328930,
+ "observedFirstContentfulPaint": 939,
+ "observedFirstContentfulPaintTs": 403328930,
+ "observedFirstContentfulPaintAllFrames": 939,
+ "observedFirstContentfulPaintAllFramesTs": 403328930,
+ "observedFirstMeaningfulPaint": 939,
+ "observedFirstMeaningfulPaintTs": 403328930,
+ "observedLargestContentfulPaint": 1080,
+ "observedLargestContentfulPaintTs": 403470322,
+ "observedLargestContentfulPaintAllFrames": 1080,
+ "observedLargestContentfulPaintAllFramesTs": 403470322,
+ "observedTraceEnd": 4157,
+ "observedTraceEndTs": 406546687,
+ "observedLoad": 1517,
+ "observedLoadTs": 403906881,
+ "observedDomContentLoaded": 938,
+ "observedDomContentLoadedTs": 403327617,
+ "observedCumulativeLayoutShift": 0.025479511790805393,
+ "observedCumulativeLayoutShiftMainFrame": 0.025479511790805393,
+ "observedTotalCumulativeLayoutShift": 0.025479511790805393,
+ "observedFirstVisualChange": 943,
+ "observedFirstVisualChangeTs": 403333027,
+ "observedLastVisualChange": 1543,
+ "observedLastVisualChangeTs": 403933027,
+ "observedSpeedIndex": 1049,
+ "observedSpeedIndexTs": 403439195
},
{
"lcpInvalidated": false
@@ -55902,23 +57242,23 @@
"type": "debugdata",
"items": [
{
- "numRequests": 82,
- "numScripts": 31,
+ "numRequests": 80,
+ "numScripts": 29,
"numStylesheets": 5,
"numFonts": 5,
- "numTasks": 2121,
+ "numTasks": 1967,
"numTasksOver10ms": 7,
- "numTasksOver25ms": 5,
- "numTasksOver50ms": 3,
+ "numTasksOver25ms": 4,
+ "numTasksOver50ms": 1,
"numTasksOver100ms": 0,
"numTasksOver500ms": 0,
- "rtt": 6.892,
- "throughput": 7693985.758609693,
- "maxRtt": 85.193,
- "maxServerLatency": 138.647,
- "totalByteWeight": 1028105,
- "totalTaskTime": 560.4839999999961,
- "mainDocumentTransferSize": 17628
+ "rtt": 2.5320000000000005,
+ "throughput": 10133218.575464422,
+ "maxRtt": 87.38199999999999,
+ "maxServerLatency": 124.77999999999999,
+ "totalByteWeight": 971744,
+ "totalTaskTime": 442.68099999999777,
+ "mainDocumentTransferSize": 16274
}
]
}
@@ -55943,24 +57283,27 @@
"uri": "budget"
},
"declaration-a11y": {
- "mention": null
+ "mention": "Accessibilité : non conforme",
+ "declarationUrl": "https://staging.plusfraichemaville.fr/accessibilite"
},
"declaration-rgpd": [
{
"slug": "ml",
- "mention": null,
- "maxScore": 0,
- "score": 0,
+ "mention": "Mentions légales",
+ "maxScore": 4,
+ "score": 4,
"missingWords": [],
- "missingTrackers": []
+ "missingTrackers": [],
+ "declarationUrl": "https://staging.plusfraichemaville.fr/mentions-legales"
},
{
"slug": "pc",
- "mention": null,
- "maxScore": 0,
- "score": 0,
+ "mention": "Confidentialité",
+ "maxScore": 4,
+ "score": 4,
"missingWords": [],
- "missingTrackers": []
+ "missingTrackers": [],
+ "declarationUrl": "https://staging.plusfraichemaville.fr/politique-de-confidentialite"
}
],
"betagouv": {
@@ -56029,15 +57372,15 @@
"width": 1920,
"height": 1080,
"url": "https://staging.plusfraichemaville.fr",
- "size": 2057.393,
- "nodes": 713,
- "requests": 96,
+ "size": 2326.763,
+ "nodes": 705,
+ "requests": 89,
"grade": "D",
"score": 41,
"ges": 2.18,
"water": 3.27,
"ecoindex_version": "5.4.2",
- "date": "2025-01-19 02:55:41.675749",
+ "date": "2025-03-02 02:43:57.541192",
"page_type": "website"
}
],
@@ -56048,12 +57391,15 @@
"summary": {
"404": "A+",
"httpGrade": "A+",
- "apdex": 0.85,
- "apdexGrade": "F",
+ "apdex": 1,
+ "apdexGrade": "A",
"uptime": 100,
"uptimeGrade": "A",
- "dependabotGrade": "A",
- "dependabotCount": 0,
+ "nmapGrade": "A",
+ "nmapOpenPortsCount": 2,
+ "nmapOpenPortsGrade": "A",
+ "dependabotGrade": "C",
+ "dependabotCount": 4,
"testsslExpireSoon": false,
"testsslExpireDate": "2025-04-20T12:46:00.000Z",
"testsslGrade": "A+",
@@ -56061,9 +57407,9 @@
"cookiesCount": null,
"trackersGrade": null,
"trackersCount": null,
- "zapCount": 2,
+ "zapCount": 7,
"zapGrade": "D",
- "lighthouse_performance": 0.4,
+ "lighthouse_performance": 0.45,
"lighthouse_performanceGrade": "D",
"lighthouse_accessibility": 1,
"lighthouse_accessibilityGrade": "A",
@@ -56076,9 +57422,9 @@
"statsGrade": "A",
"githubRepositoryGrade": "A",
"budgetPageGrade": "A",
- "declaration-a11y": "F",
- "declaration-rgpd-ml": "F",
- "declaration-rgpd-pc": "F",
+ "declaration-a11y": "C",
+ "declaration-rgpd-ml": "A",
+ "declaration-rgpd-pc": "A",
"ecoindexGrade": "D",
"dsfrGrade": "A"
}
@@ -56096,12 +57442,31 @@
"hash": null,
"search": null,
"query": null,
- "pathname": "/projets-entreprise/plan-action-eau",
- "path": "/projets-entreprise/plan-action-eau",
- "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/plan-action-eau"
+ "pathname": "/mentions-legales",
+ "path": "/mentions-legales",
+ "href": "https://mission-transition-ecologique.beta.gouv.fr/mentions-legales"
+ },
+ "link": "https://mission-transition-ecologique.beta.gouv.fr/mentions-legales",
+ "line": "https://mission-transition-ecologique.beta.gouv.fr/mentions-legales",
+ "broken": true
+ },
+ {
+ "url": {
+ "protocol": "https:",
+ "slashes": true,
+ "auth": null,
+ "host": "mission-transition-ecologique.beta.gouv.fr",
+ "port": null,
+ "hostname": "mission-transition-ecologique.beta.gouv.fr",
+ "hash": null,
+ "search": null,
+ "query": null,
+ "pathname": "/projets-entreprise/isolation-thermique",
+ "path": "/projets-entreprise/isolation-thermique",
+ "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/isolation-thermique"
},
- "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/plan-action-eau",
- "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/plan-action-eau",
+ "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/isolation-thermique",
+ "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/isolation-thermique",
"broken": true
},
{
@@ -56115,12 +57480,12 @@
"hash": null,
"search": null,
"query": null,
- "pathname": "/projets-entreprise/plan-mobilite",
- "path": "/projets-entreprise/plan-mobilite",
- "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/plan-mobilite"
+ "pathname": "/projets-entreprise/panneaux-solaires",
+ "path": "/projets-entreprise/panneaux-solaires",
+ "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/panneaux-solaires"
},
- "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/plan-mobilite",
- "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/plan-mobilite",
+ "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/panneaux-solaires",
+ "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/panneaux-solaires",
"broken": true
},
{
@@ -56134,12 +57499,12 @@
"hash": null,
"search": null,
"query": null,
- "pathname": "/projets-entreprise/economiseurs-eau-sanitaires",
- "path": "/projets-entreprise/economiseurs-eau-sanitaires",
- "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/economiseurs-eau-sanitaires"
+ "pathname": "/projets-entreprise/plan-action-eco-energie",
+ "path": "/projets-entreprise/plan-action-eco-energie",
+ "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/plan-action-eco-energie"
},
- "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/economiseurs-eau-sanitaires",
- "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/economiseurs-eau-sanitaires",
+ "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/plan-action-eco-energie",
+ "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/plan-action-eco-energie",
"broken": true
},
{
@@ -56153,12 +57518,12 @@
"hash": null,
"search": null,
"query": null,
- "pathname": "/mentions-legales",
- "path": "/mentions-legales",
- "href": "https://mission-transition-ecologique.beta.gouv.fr/mentions-legales"
+ "pathname": "/projets-entreprise/vehicule-propre",
+ "path": "/projets-entreprise/vehicule-propre",
+ "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/vehicule-propre"
},
- "link": "https://mission-transition-ecologique.beta.gouv.fr/mentions-legales",
- "line": "https://mission-transition-ecologique.beta.gouv.fr/mentions-legales",
+ "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/vehicule-propre",
+ "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/vehicule-propre",
"broken": true
},
{
@@ -56172,12 +57537,12 @@
"hash": null,
"search": null,
"query": null,
- "pathname": "/projets-entreprise/sensibilisation-equipes",
- "path": "/projets-entreprise/sensibilisation-equipes",
- "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/sensibilisation-equipes"
+ "pathname": "/projets-entreprise/reduction-emballages",
+ "path": "/projets-entreprise/reduction-emballages",
+ "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/reduction-emballages"
},
- "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/sensibilisation-equipes",
- "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/sensibilisation-equipes",
+ "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/reduction-emballages",
+ "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/reduction-emballages",
"broken": true
},
{
@@ -56191,12 +57556,12 @@
"hash": null,
"search": null,
"query": null,
- "pathname": "/projets-entreprise/plan-action-eco-energie",
- "path": "/projets-entreprise/plan-action-eco-energie",
- "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/plan-action-eco-energie"
+ "pathname": "/stats",
+ "path": "/stats",
+ "href": "https://mission-transition-ecologique.beta.gouv.fr/stats"
},
- "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/plan-action-eco-energie",
- "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/plan-action-eco-energie",
+ "link": "https://mission-transition-ecologique.beta.gouv.fr/stats",
+ "line": "https://mission-transition-ecologique.beta.gouv.fr/stats",
"broken": true
},
{
@@ -56210,12 +57575,12 @@
"hash": null,
"search": null,
"query": null,
- "pathname": "/projets-entreprise/bilan-ges",
- "path": "/projets-entreprise/bilan-ges",
- "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/bilan-ges"
+ "pathname": "/aides-entreprise",
+ "path": "/aides-entreprise",
+ "href": "https://mission-transition-ecologique.beta.gouv.fr/aides-entreprise"
},
- "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/bilan-ges",
- "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/bilan-ges",
+ "link": "https://mission-transition-ecologique.beta.gouv.fr/aides-entreprise",
+ "line": "https://mission-transition-ecologique.beta.gouv.fr/aides-entreprise",
"broken": true
},
{
@@ -56229,12 +57594,12 @@
"hash": null,
"search": null,
"query": null,
- "pathname": "/projets-entreprise/diag-360",
- "path": "/projets-entreprise/diag-360",
- "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/diag-360"
+ "pathname": "/projets-entreprise/pac",
+ "path": "/projets-entreprise/pac",
+ "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/pac"
},
- "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/diag-360",
- "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/diag-360",
+ "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/pac",
+ "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/pac",
"broken": true
},
{
@@ -56248,12 +57613,12 @@
"hash": null,
"search": null,
"query": null,
- "pathname": "/projets-entreprise/reduction-emballages",
- "path": "/projets-entreprise/reduction-emballages",
- "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/reduction-emballages"
+ "pathname": "/projets-entreprise/chauffe-eau-solaire",
+ "path": "/projets-entreprise/chauffe-eau-solaire",
+ "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/chauffe-eau-solaire"
},
- "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/reduction-emballages",
- "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/reduction-emballages",
+ "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/chauffe-eau-solaire",
+ "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/chauffe-eau-solaire",
"broken": true
},
{
@@ -56267,12 +57632,12 @@
"hash": null,
"search": null,
"query": null,
- "pathname": "/stats",
- "path": "/stats",
- "href": "https://mission-transition-ecologique.beta.gouv.fr/stats"
+ "pathname": "/projets-entreprise/eclairage-led",
+ "path": "/projets-entreprise/eclairage-led",
+ "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/eclairage-led"
},
- "link": "https://mission-transition-ecologique.beta.gouv.fr/stats",
- "line": "https://mission-transition-ecologique.beta.gouv.fr/stats",
+ "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/eclairage-led",
+ "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise/eclairage-led",
"broken": true
},
{
@@ -56286,12 +57651,12 @@
"hash": null,
"search": null,
"query": null,
- "pathname": "/aides-entreprise",
- "path": "/aides-entreprise",
- "href": "https://mission-transition-ecologique.beta.gouv.fr/aides-entreprise"
+ "pathname": "/projets-entreprise",
+ "path": "/projets-entreprise",
+ "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise"
},
- "link": "https://mission-transition-ecologique.beta.gouv.fr/aides-entreprise",
- "line": "https://mission-transition-ecologique.beta.gouv.fr/aides-entreprise",
+ "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise",
+ "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise",
"broken": true
},
{
@@ -56331,25 +57696,6 @@
"link": "https://mission-transition-ecologique.beta.gouv.fr/donnees-personnelles",
"line": "https://mission-transition-ecologique.beta.gouv.fr/donnees-personnelles",
"broken": true
- },
- {
- "url": {
- "protocol": "https:",
- "slashes": true,
- "auth": null,
- "host": "mission-transition-ecologique.beta.gouv.fr",
- "port": null,
- "hostname": "mission-transition-ecologique.beta.gouv.fr",
- "hash": null,
- "search": null,
- "query": null,
- "pathname": "/projets-entreprise",
- "path": "/projets-entreprise",
- "href": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise"
- },
- "link": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise",
- "line": "https://mission-transition-ecologique.beta.gouv.fr/projets-entreprise",
- "broken": true
}
],
"url": "https://mission-transition-ecologique.beta.gouv.fr",
@@ -56366,263 +57712,263 @@
"/annuaire"
],
"http": {
- "url": "https://mission-transition-ecologique.beta.gouv.fr",
- "algorithm_version": 3,
- "end_time": "Wed, 26 Jun 2024 17:15:40 GMT",
- "grade": "A+",
- "hidden": false,
- "likelihood_indicator": "LOW",
- "response_headers": {
- "Access-Control-Allow-Origin": "*",
- "Cache-Control": "no-cache",
- "Connection": "keep-alive",
- "Content-Encoding": "gzip",
- "Content-Security-Policy": "script-src 'self'; default-src 'none';base-uri 'self';form-action 'self';script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://embed.typeform.com;style-src 'self' 'unsafe-inline' https://embed.typeform.com;font-src 'self';img-src 'self' data:;object-src 'self';connect-src 'self' https://conseillers-entreprises.service-public.fr https://stats.beta.gouv.fr https://sentry.incubateur.net https://embed.typeform.com https://api.typeform.com;worker-src 'self' blob:;frame-src 'self' https://conseillers-entreprises.service-public.fr https://form.typeform.com;frame-ancestors 'self' https://conseillers-entreprises.service-public.fr;",
- "Content-Type": "text/html",
- "Date": "Wed, 26 Jun 2024 17:15:39 GMT",
- "Etag": "W/\"90f-5vPEkaOJ82GDHboiPS3cXWeNlCQ\"",
- "Expect-CT": "default-src 'self' https://sentry.incubateur.net;report-uri https://sentry.incubateur.net/api/137/security/?sentry_key=caf416235f164b448d0ca6369f2053e5;",
- "Strict-Transport-Security": "max-age=31536000",
- "Transfer-Encoding": "chunked",
- "X-Content-Type-Options": "nosniff",
- "X-Frame-Options": "ALLOW-FROM https://conseillers-entreprises.service-public.fr",
- "X-Request-ID": "664c11a2-318f-47d9-96e6-649876470b60"
- },
- "scan_id": 52734977,
- "score": 105,
- "start_time": "Wed, 26 Jun 2024 17:15:38 GMT",
- "state": "FINISHED",
- "status_code": 200,
- "tests_failed": 0,
- "tests_passed": 11,
- "tests_quantity": 11,
- "details": {
+ "scan": {
+ "algorithmVersion": 4,
+ "grade": "A+",
+ "error": null,
+ "score": 125,
+ "statusCode": 200,
+ "testsFailed": 0,
+ "testsPassed": 10,
+ "testsQuantity": 10,
+ "responseHeaders": {
+ "date": "Sun, 02 Mar 2025 03:07:24 GMT",
+ "content-type": "text/html;charset=utf-8",
+ "transfer-encoding": "chunked",
+ "connection": "close",
+ "x-request-id": "240bc663-0ec3-4b24-bca3-b5a0240ac90e",
+ "referrer-policy": "no-referrer",
+ "strict-transport-security": "max-age=15552000; includeSubDomains;",
+ "x-content-type-options": "nosniff",
+ "x-download-options": "noopen",
+ "x-frame-options": "SAMEORIGIN",
+ "x-permitted-cross-domain-policies": "none",
+ "x-xss-protection": "0",
+ "vary": "Accept-Encoding",
+ "etag": "W/\"1ea3d-TZ+OqXzTAFzQUGev/uXYhebqlXU\"",
+ "last-modified": "Fri, 28 Feb 2025 11:29:34 GMT",
+ "access-control-allow-origin": "*",
+ "x-robots-tag": "index, follow, max-image-preview:large, max-snippet:-1, max-video-preview:-1",
+ "cross-origin-resource-policy": "same-origin",
+ "cross-origin-opener-policy": "same-origin",
+ "content-security-policy": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; script-src 'self' 'strict-dynamic' 'sha256-QqQusovmjMmhZSsjn3BMrqkpqqTdM9XT+9whcq8zxzI=' 'sha384-f1YKi4fm4EzFoLnEJmQrOvhGHn/YUImUqrZlo+6En8UbpxESN3Tu3i3PtxQkMpTW' 'sha384-tGPNOjUSfzR7z3Wejs0zytxr1R8APKdd8V//6s/WI62/s+7cMQyO9h/ObT9S4Hy1' 'sha384-n53OgnVAGgq87usZQEB/aTF/dMaJx+G8nPAvyaHvD6p3iqx7H9gLAJwJvD/z7t0E' 'sha384-vCIfPh0nFBe9HT4JSU2SnSOrIquKLUh9ZeZeDrHKgxAtmBHWk7jpcfPxQgH8r9LH' 'sha384-ZyUH7uRYgWpkmhDvABP4g+arbFckxJr9qHT66z677rOz2IjTToF6AUgB9EoAQbeM' 'sha384-Dr+aX6V41ZjcXzKA7MO9kL8G8UiT0Xj7ftyjWs8O3jf1aYEAAwO5lDk1AjgCayEH' 'sha384-4PIvYbGUsVDJiQxNPidcuP7SE/xD53XrTI9p3og02elstD0NfCDwNropZ0ZYVbsb' 'sha384-pRpwQBksidtrEtoFqanwChEy2lTPIa+grk1BDM7i9PittRcnToWyHQ0s9sEMT+yt' 'sha384-eC847ZokYzLwMLX5nKfoFIHEbir7z998hzKsXpjRG2+hFZBSQ64rFcYmARbg2kEB' 'sha384-76dpjAYPgNgZR+2TgSV5LSpE1KuLS2+OFArFRgSbXRlqX+qttpnyI0TagD2TzM5P' 'sha384-8ZiMjM0xbZrW6L7ZunPM6/cS1+obYwAU4uQ4N1zU+Uj8WMRGlRglyA/qCQjlAf4k' 'sha384-cNTwmRieyFCapvJD4vtMdOd7gYdyzKKBrfRhmI/tOj1l8X3Ynk6KtoBtVB4SxP23' 'sha384-tGsnqnMypBMJ0pUZJJVdMh/q58nVzYxR9XET7ei0HYb1aiRZsgWIMm2Zlrl0hTZw' 'sha384-jhvJxYvt0TU3Vv9LakFoLeto8yWqLyXD5j5iEUhlpFAOWZlGRd+gsqKS0i954nXV' 'sha384-CLNQvTudURZ0mHBYjwFh5WxreaDe7MM5/Er9O67xA+Bt4NU3iPvS5A9OgDU9czFr' 'sha384-JqkTz427LEhl6pIxOdMtWHu+yKQQ1hh9DOSQZTIPHUiWVLMFHT7LcrSit0zX7k6s' 'sha384-MtF6RYgUgmMJx65mUrhkBhn57C299x4MS/Ivs2bOR2GFLCuC024sH3zmoBtFCUHU' 'sha384-Ofp8IJJYwpBL48vTMvxShnM/oMDmCEpe7KD474hA7XhMvF3GlqBXgc6Tq0rfwObH' 'sha384-bbHoQCD2QuRVxTbSpUDGG18XKiOrq4uaIRCj/mYMHyOJ3yYsKcl4EOzwDrjy0B+b' 'sha384-8eC0I0N0E7YC+0/TyqGd+lUIiFqTbn0GPgr5QOjTMSqVyEpRWEjoCvmEQ9UJmFc6' 'sha384-gtmhFKBbmP9SwOtOZPc2jK8ImcYGgtPsqz8yJVAR60Hw6a6JWh8LadwlTshn1Gui' 'sha384-UQXKKvgm9nPgYB4m069DBmffczTYQ3tT9TL22wwPqfOHAelhw430djzZzJ3eoADd' 'sha384-NFJWrxAeAr+MRweEwsOstEyEkEdV2X5WxHld4P189naiScrTrGEJBZimLXtjTpKu' 'sha384-bgmT70Gk0Hi20OfKO6GOfReDL7l8vly2r32Asvlf2nus9QI5bjFK30z/T3sZR1GM' 'sha384-HYV2lYjancxZc/8uNgzoQcCuWBJ2f92zW0cu/GXWu18oCLGL4JxdMek/ENCxZ4TE' 'sha384-zuvuRwc3g7NcPXFBpSOZMZHW59pt4EtPzz+ghMjciB4yQTY8bUYBsZt9xou/V6gM' 'sha384-viQ6Yo6tR2yGQx7aVO/zfR8ic37W8+XmLij5LjNIWuRWTXroSh465ZuUjwBqnU77' 'sha384-bUemJiNSKu3htNvnffbpMFkIiTZ6KOWOG2HwX9LuY5AhVCgkZs8srhSGOERY7so1' 'sha384-CN0LCPmvzVVfP3V1AYWH4ETIyjGuGs/Q4gwlMqVwPd8u7W9k7P4kvg3nip7gOywD'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://baserow.io https://tee-metabase.osc-fr1.scalingo.io https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; default-src 'none';",
+ "origin-agent-cluster": "?1",
+ "x-dns-prefetch-control": "off",
+ "permissions-policy": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
+ }
+ },
+ "tests": {
"content-security-policy": {
"expectation": "csp-implemented-with-no-unsafe",
- "name": "content-security-policy",
- "output": {
- "data": {
- "base-uri": [
- "'self'"
- ],
- "connect-src": [
- "https://api.typeform.com",
- "'self'",
- "https://embed.typeform.com",
- "https://stats.beta.gouv.fr",
- "https://sentry.incubateur.net",
- "https://conseillers-entreprises.service-public.fr"
- ],
- "default-src": [
- "'none'"
- ],
- "font-src": [
- "'self'"
- ],
- "form-action": [
- "'self'"
- ],
- "frame-ancestors": [
- "'self'",
- "https://conseillers-entreprises.service-public.fr"
- ],
- "frame-src": [
- "https://form.typeform.com",
- "'self'",
- "https://conseillers-entreprises.service-public.fr"
- ],
- "img-src": [
- "'self'",
- "data:"
- ],
- "object-src": [
- "'self'"
- ],
- "script-src": [
- "'self'"
- ],
- "script-src-elem": [
- "'self'",
- "'unsafe-inline'",
- "https://embed.typeform.com",
- "https://stats.beta.gouv.fr"
- ],
- "style-src": [
- "'self'",
- "'unsafe-inline'",
- "https://embed.typeform.com"
- ],
- "worker-src": [
- "'self'",
- "blob:"
- ]
- },
- "http": true,
- "meta": false,
- "numPolicies": 1,
- "policy": {
- "antiClickjacking": true,
- "defaultNone": true,
- "insecureBaseUri": false,
- "insecureFormAction": false,
- "insecureSchemeActive": false,
- "insecureSchemePassive": false,
- "strictDynamic": false,
- "unsafeEval": false,
- "unsafeInline": false,
- "unsafeInlineStyle": true,
- "unsafeObjects": false
- }
- },
"pass": true,
"result": "csp-implemented-with-unsafe-inline-in-style-src-only",
- "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.",
- "score_modifier": 0
- },
- "contribute": {
- "expectation": "contribute-json-only-required-on-mozilla-properties",
- "name": "contribute",
- "output": {
- "data": null
+ "scoreModifier": 0,
+ "data": {
+ "base-uri": [
+ "'self'"
+ ],
+ "font-src": [
+ "'self'"
+ ],
+ "form-action": [
+ "'self'"
+ ],
+ "frame-ancestors": [
+ "'self'"
+ ],
+ "img-src": [
+ "'self'",
+ "data:"
+ ],
+ "object-src": [
+ "'self'"
+ ],
+ "script-src-attr": [
+ "'none'"
+ ],
+ "style-src": [
+ "'self'",
+ "'unsafe-inline'",
+ "https://baserow.io",
+ "https://tee-metabase.osc-fr1.scalingo.io"
+ ],
+ "script-src": [
+ "'sha256-qqqusovmjmmhzssjn3bmrqkpqqtdm9xt+9whcq8zxzi='",
+ "'sha384-4pivybgusvdjiqxnpidcup7se/xd53xrti9p3og02elstd0nfcdwnropz0zyvbsb'",
+ "'sha384-76dpjaypgngzr+2tgsv5lspe1kuls2+ofarfrgsbxrlqx+qttpnyi0tagd2tzm5p'",
+ "'sha384-8ec0i0n0e7yc+0/tyqgd+luiifqtbn0gpgr5qojtmsqvyeprwejocvmeq9ujmfc6'",
+ "'sha384-8zimjm0xbzrw6l7zunpm6/cs1+obywau4uq4n1zu+uj8wmrglrglya/qcqjlaf4k'",
+ "'sha384-bbhoqcd2qurvxtbspudgg18xkiorq4uaircj/mymhyoj3yyskcl4eozwdrjy0b+b'",
+ "'sha384-bgmt70gk0hi20ofko6gofredl7l8vly2r32asvlf2nus9qi5bjfk30z/t3szr1gm'",
+ "'sha384-buemjinsku3htnvnffbpmfkiitz6kowog2hwx9luy5ahvcgkzs8srhsgoery7so1'",
+ "'sha384-clnqvtudurz0mhbyjwfh5wxreade7mm5/er9o67xa+bt4nu3ipvs5a9ogdu9czfr'",
+ "'sha384-cn0lcpmvzvvfp3v1aywh4etiyjgugs/q4gwlmqvwpd8u7w9k7p4kvg3nip7goywd'",
+ "'sha384-cntwmrieyfcapvjd4vtmdod7gydyzkkbrfrhmi/toj1l8x3ynk6ktobtvb4sxp23'",
+ "'sha384-dr+ax6v41zjcxzka7mo9kl8g8uit0xj7ftyjws8o3jf1ayeaawo5ldk1ajgcayeh'",
+ "'sha384-ec847zokyzlwmlx5nkfofihebir7z998hzksxpjrg2+hfzbsq64rfcymarbg2keb'",
+ "'sha384-f1yki4fm4ezfolnejmqrovhghn/yuimuqrzlo+6en8ubpxesn3tu3i3ptxqkmptw'",
+ "'sha384-gtmhfkbbmp9swotozpc2jk8imcyggtpsqz8yjvar60hw6a6jwh8ladwltshn1gui'",
+ "'sha384-hyv2lyjancxzc/8ungzoqccuwbj2f92zw0cu/gxwu18oclgl4jxdmek/encxz4te'",
+ "'sha384-jhvjxyvt0tu3vv9lakfoleto8ywqlyxd5j5ieuhlpfaowzlgrd+gsqks0i954nxv'",
+ "'sha384-jqktz427lehl6pixodmtwhu+ykqq1hh9dosqztiphuiwvlmfht7lcrsit0zx7k6s'",
+ "'sha384-mtf6rygugmmjx65murhkbhn57c299x4ms/ivs2bor2gflcuc024sh3zmobtfcuhu'",
+ "'sha384-n53ognvaggq87uszqeb/atf/dmajx+g8npavyahvd6p3iqx7h9glajwjvd/z7t0e'",
+ "'sha384-nfjwrxaear+mrweewsosteyekedv2x5wxhld4p189naiscrtrgejbzimlxtjtpku'",
+ "'sha384-ofp8ijjywpbl48vtmvxshnm/omdmcepe7kd474ha7xhmvf3glqbxgc6tq0rfwobh'",
+ "'sha384-prpwqbksidtretofqanwchey2ltpia+grk1bdm7i9pittrcntowyhq0s9semt+yt'",
+ "'sha384-tgpnojusfzr7z3wejs0zytxr1r8apkdd8v//6s/wi62/s+7cmqyo9h/obt9s4hy1'",
+ "'sha384-tgsnqnmypbmj0puzjjvdmh/q58nvzyxr9xet7ei0hyb1airzsgwimm2zlrl0htzw'",
+ "'sha384-uqxkkvgm9npgyb4m069dbmffcztyq3tt9tl22wwpqfohaelhw430djzzzj3eoadd'",
+ "'sha384-vcifph0nfbe9ht4jsu2snsoriqukluh9zezedrhkgxatmbhwk7jpcfpxqgh8r9lh'",
+ "'sha384-viq6yo6tr2ygqx7avo/zfr8ic37w8+xmlij5ljniwurwtxrosh465zuujwbqnu77'",
+ "'sha384-zuvurwc3g7ncpxfbpsozmzhw59pt4etpzz+ghmjcib4yqty8buybszt9xou/v6gm'",
+ "'sha384-zyuh7urygwpkmhdvabp4g+arbfckxjr9qht66z677roz2ijttof6augb9eoaqbem'",
+ "'strict-dynamic'"
+ ],
+ "upgrade-insecure-requests": [
+ "'none'"
+ ],
+ "script-src-elem": [
+ "'self'",
+ "'unsafe-inline'",
+ "https://baserow.io",
+ "https://eu-assets.i.posthog.com",
+ "https://eu.i.posthog.com",
+ "https://stats.beta.gouv.fr",
+ "https://tee-metabase.osc-fr1.scalingo.io"
+ ],
+ "worker-src": [
+ "'self'",
+ "blob:"
+ ],
+ "connect-src": [
+ "'self'",
+ "https://baserow.io",
+ "https://eu-assets.i.posthog.com",
+ "https://eu.i.posthog.com",
+ "https://sentry.incubateur.net",
+ "https://stats.beta.gouv.fr",
+ "https://tee-metabase.osc-fr1.scalingo.io"
+ ],
+ "frame-src": [
+ "'self'",
+ "https://baserow.io",
+ "https://tee-metabase.osc-fr1.scalingo.io"
+ ],
+ "default-src": [
+ "'none'"
+ ]
},
- "pass": true,
- "result": "contribute-json-only-required-on-mozilla-properties",
- "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla",
- "score_modifier": 0
+ "http": true,
+ "meta": true,
+ "policy": {
+ "antiClickjacking": true,
+ "defaultNone": true,
+ "insecureBaseUri": false,
+ "insecureFormAction": false,
+ "insecureSchemeActive": false,
+ "insecureSchemePassive": false,
+ "strictDynamic": true,
+ "unsafeEval": false,
+ "unsafeInline": false,
+ "unsafeInlineStyle": true,
+ "unsafeObjects": false
+ },
+ "numPolicies": 2
},
"cookies": {
"expectation": "cookies-secure-with-httponly-sessions",
- "name": "cookies",
- "output": {
- "data": null,
- "sameSite": null
- },
"pass": true,
"result": "cookies-not-found",
- "score_description": "No cookies detected",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "sameSite": false
},
"cross-origin-resource-sharing": {
"expectation": "cross-origin-resource-sharing-not-implemented",
- "name": "cross-origin-resource-sharing",
- "output": {
- "data": {
- "acao": "*",
- "clientaccesspolicy": null,
- "crossdomain": null
- }
- },
"pass": true,
- "result": "cross-origin-resource-sharing-implemented-with-public-access",
- "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header",
- "score_modifier": 0
+ "result": "cross-origin-resource-sharing-not-implemented",
+ "scoreModifier": 0,
+ "data": null
},
"redirection": {
"expectation": "redirection-to-https",
- "name": "redirection",
- "output": {
- "destination": "https://mission-transition-ecologique.beta.gouv.fr/",
- "redirects": true,
- "route": [
- "http://mission-transition-ecologique.beta.gouv.fr/",
- "https://mission-transition-ecologique.beta.gouv.fr/"
- ],
- "status_code": 200
- },
"pass": true,
"result": "redirection-to-https",
- "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "destination": "https://mission-transition-ecologique.beta.gouv.fr/",
+ "redirects": true,
+ "route": [
+ "http://mission-transition-ecologique.beta.gouv.fr/",
+ "https://mission-transition-ecologique.beta.gouv.fr/"
+ ],
+ "statusCode": 200
},
"referrer-policy": {
"expectation": "referrer-policy-private",
- "name": "referrer-policy",
- "output": {
- "data": null,
- "http": false,
- "meta": false
- },
"pass": true,
- "result": "referrer-policy-not-implemented",
- "score_description": "Referrer-Policy header not implemented",
- "score_modifier": 0
+ "result": "referrer-policy-private",
+ "scoreModifier": 5,
+ "data": "no-referrer",
+ "http": true,
+ "meta": false
},
"strict-transport-security": {
"expectation": "hsts-implemented-max-age-at-least-six-months",
- "name": "strict-transport-security",
- "output": {
- "data": "max-age=31536000",
- "includeSubDomains": false,
- "max-age": 31536000,
- "preload": false,
- "preloaded": false
- },
"pass": true,
"result": "hsts-implemented-max-age-at-least-six-months",
- "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "max-age=15552000; includeSubDomains;",
+ "includeSubDomains": true,
+ "maxAge": 15552000,
+ "preload": false,
+ "preloaded": false
},
"subresource-integrity": {
"expectation": "sri-implemented-and-external-scripts-loaded-securely",
- "name": "subresource-integrity",
- "output": {
- "data": {}
- },
"pass": true,
- "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin",
- "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin",
- "score_modifier": 0
+ "result": "sri-implemented-and-all-scripts-loaded-securely",
+ "scoreModifier": 5,
+ "data": {}
},
"x-content-type-options": {
"expectation": "x-content-type-options-nosniff",
- "name": "x-content-type-options",
- "output": {
- "data": "nosniff"
- },
"pass": true,
"result": "x-content-type-options-nosniff",
- "score_description": "X-Content-Type-Options header set to \"nosniff\"",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "nosniff"
},
"x-frame-options": {
"expectation": "x-frame-options-sameorigin-or-deny",
- "name": "x-frame-options",
- "output": {
- "data": "ALLOW-FROM https://conseillers-entreprises.service-public.fr"
- },
"pass": true,
"result": "x-frame-options-implemented-via-csp",
- "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive",
- "score_modifier": 5
- },
- "x-xss-protection": {
- "expectation": "x-xss-protection-disabled",
- "name": "x-xss-protection",
- "output": {
- "data": null
- },
+ "scoreModifier": 5,
+ "data": "SAMEORIGIN"
+ },
+ "cross-origin-resource-policy": {
+ "expectation": "corp-implemented-with-same-site",
"pass": true,
- "result": "x-xss-protection-not-implemented",
- "score_description": "Deprecated X-XSS-Protection header not implemented",
- "score_modifier": 0
+ "result": "corp-implemented-with-same-origin",
+ "scoreModifier": 10,
+ "data": "same-origin",
+ "http": true,
+ "meta": false
}
}
},
"updownio": {
"token": "3z2h",
"url": "https://mission-transition-ecologique.beta.gouv.fr",
+ "type": "https",
"alias": "Transition Écologique des Entreprises",
- "last_status": 200,
"uptime": 100,
"down": false,
"down_since": null,
- "up_since": "2025-01-12T15:08:07Z",
+ "up_since": "2025-02-19T09:53:44Z",
"error": null,
"period": 300,
- "apdex_t": 0.5,
"string_match": "",
"enabled": true,
"published": true,
+ "recipients": [
+ "email:2047203681"
+ ],
+ "last_check_at": "2025-03-02T03:22:46Z",
+ "next_check_at": "2025-03-02T03:27:45Z",
+ "created_at": "2023-11-26T20:00:45Z",
+ "mute_until": null,
+ "last_status": 200,
+ "apdex_t": 0.5,
"disabled_locations": [
"lan",
"mia",
@@ -56631,19 +57977,12 @@
"tok",
"syd"
],
- "recipients": [
- "email:2047203681"
- ],
- "last_check_at": "2025-01-26T03:12:06Z",
- "next_check_at": "2025-01-26T03:17:04Z",
- "created_at": "2023-11-26T20:00:45Z",
- "mute_until": null,
- "favicon_url": "https://mission-transition-ecologique.beta.gouv.fr/favicon.ico",
"custom_headers": {},
+ "favicon_url": "https://mission-transition-ecologique.beta.gouv.fr/favicon.ico",
"http_verb": "GET/HEAD",
"http_body": "",
"ssl": {
- "tested_at": "2025-01-26T02:26:49Z",
+ "tested_at": "2025-03-02T03:17:49Z",
"expires_at": "2025-04-10T09:00:41Z",
"valid": true,
"error": null
@@ -56653,16 +57992,37 @@
"timings": {
"redirect": 0,
"namelookup": 15,
- "connection": 25,
- "handshake": 34,
- "response": 36,
- "total": 111
+ "connection": 21,
+ "handshake": 28,
+ "response": 27,
+ "total": 90
}
},
"uptimeGrade": "A",
"apdexGrade": "A"
},
- "nmap": null,
+ "nmap": {
+ "host": "mission-transition-ecologique.beta.gouv.fr",
+ "protocol": "tcp",
+ "closed_ports": "998",
+ "open_ports": [
+ {
+ "service": {
+ "name": "http",
+ "id": "80",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "https",
+ "id": "443",
+ "vulnerabilities": []
+ }
+ }
+ ],
+ "grade": "A"
+ },
"dependabot": {
"totalCount": 0,
"grade": "A",
@@ -56681,77 +58041,77 @@
"testssl": [
{
"id": "service",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -56759,7 +58119,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -56767,7 +58127,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -56775,7 +58135,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -56783,7 +58143,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -56791,7 +58151,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -56799,532 +58159,525 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "39 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2025-01-10 09:00"
},
{
"id": "cert_notAfter",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "2025-04-10 09:00"
},
{
"id": "cert_extlifeSpan",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "http://r10.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "R10 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "R10 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "-2 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "1737860951"
+ "finding": "1740884960"
},
{
"id": "HSTS_time",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "180 days (=15552000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "includes subdomains"
},
{
"id": "HSTS_preload",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "SAMEORIGIN"
},
{
"id": "X-Content-Type-Options",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
- "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://embed.typeform.com; script-src 'self' 'strict-dynamic' 'sha256-5QjHEvvMSISVlaVqgxJSJ50i0+zgNKuvPz+xUUwl/VE=' 'sha384-VMFSdPkwMECpkq9PkxQ6senCZn9ygw9b2/xg9ReukcK6YYSaiYdhQ/A8KQWlwrHt' 'sha384-YMow5h1tZXniRVUe5ibCoMYEF8eNtPyfutxsuz9NpaLOvFe3b0nLPa2TlW6DAYpc' 'sha384-Dx7buZBsDT2M1Ur1ptIZcPGFxcH12bT1Y9qvdtxsy6EEW2W7BpCHbAkxERk/pf+y' 'sha384-DKX/ja8AzQnYDCUpHkusZudYbWjyIGqaW6i1mpVMAqcfCe/JUkiBgYX6GMGCWBMr' 'sha384-01DZbWgdETfBApznWkl/XBYvby3eY2u7SAtJInkVberai9gligCr3XJk7T5N1d4R' 'sha384-6waTUygXNNQcmVwS6mWo1+1Kn/CnlqPcoRMxgm7vSfkjckaVJ8ubdR+IXwxzHS25' 'sha384-wWY0bXN4CfhR8YQRTUCIneciM5CPipgxjk/hQ1b94XZTbXrGihLZwO7xzTcUWNgA' 'sha384-ew/mTsO/ikeVi2B3yiBybL3MkYOklCHdWZ0kYZnxsV6tdSiVNIXdFujXADigDZN6' 'sha384-ZuP0Kn5HfzTGzi1AzrsLwYURIupwVG7TRei9Cey/R2SvTgHdFhUNu8EFwvy7nIUw' 'sha384-NZpIFlhjiaJ/id1cWARdgyCjksXWm6071UV98rtSTKAUFU6qyTkNQjwaIvMTwI6K' 'sha384-CEfIm0MG4uqmvXfepq5KYCSFNWj1jcaT6U4gmAxm0K+ZfsDoKfi7ts/hqKiPi+SR' 'sha384-zdyAaWd0SBPHHrQWZHlL4kTtdXl9xoG+U3zrnaEco1MSMx4RueoTQK35A2AusJzo' 'sha384-5EHPIyXVX2Z/X1xHD2srdgxCSq5/IyDVNLYmw7aVFNjcmz5sml1TGfa5SMPnHCUO' 'sha384-oYciI9OjbhzUORiHaMHj9MXpgOcmJSumGzQJYppv0+6/Bw+PtOCUH3FAoyJxY/yH'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://embed.typeform.com https://api.typeform.com https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://form.typeform.com; default-src 'none';"
+ "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; script-src 'self' 'strict-dynamic' 'sha256-QqQusovmjMmhZSsjn3BMrqkpqqTdM9XT+9whcq8zxzI=' 'sha384-f1YKi4fm4EzFoLnEJmQrOvhGHn/YUImUqrZlo+6En8UbpxESN3Tu3i3PtxQkMpTW' 'sha384-tGPNOjUSfzR7z3Wejs0zytxr1R8APKdd8V//6s/WI62/s+7cMQyO9h/ObT9S4Hy1' 'sha384-n53OgnVAGgq87usZQEB/aTF/dMaJx+G8nPAvyaHvD6p3iqx7H9gLAJwJvD/z7t0E' 'sha384-vCIfPh0nFBe9HT4JSU2SnSOrIquKLUh9ZeZeDrHKgxAtmBHWk7jpcfPxQgH8r9LH' 'sha384-ZyUH7uRYgWpkmhDvABP4g+arbFckxJr9qHT66z677rOz2IjTToF6AUgB9EoAQbeM' 'sha384-Dr+aX6V41ZjcXzKA7MO9kL8G8UiT0Xj7ftyjWs8O3jf1aYEAAwO5lDk1AjgCayEH' 'sha384-4PIvYbGUsVDJiQxNPidcuP7SE/xD53XrTI9p3og02elstD0NfCDwNropZ0ZYVbsb' 'sha384-pRpwQBksidtrEtoFqanwChEy2lTPIa+grk1BDM7i9PittRcnToWyHQ0s9sEMT+yt' 'sha384-eC847ZokYzLwMLX5nKfoFIHEbir7z998hzKsXpjRG2+hFZBSQ64rFcYmARbg2kEB' 'sha384-76dpjAYPgNgZR+2TgSV5LSpE1KuLS2+OFArFRgSbXRlqX+qttpnyI0TagD2TzM5P' 'sha384-8ZiMjM0xbZrW6L7ZunPM6/cS1+obYwAU4uQ4N1zU+Uj8WMRGlRglyA/qCQjlAf4k' 'sha384-cNTwmRieyFCapvJD4vtMdOd7gYdyzKKBrfRhmI/tOj1l8X3Ynk6KtoBtVB4SxP23' 'sha384-tGsnqnMypBMJ0pUZJJVdMh/q58nVzYxR9XET7ei0HYb1aiRZsgWIMm2Zlrl0hTZw' 'sha384-jhvJxYvt0TU3Vv9LakFoLeto8yWqLyXD5j5iEUhlpFAOWZlGRd+gsqKS0i954nXV' 'sha384-CLNQvTudURZ0mHBYjwFh5WxreaDe7MM5/Er9O67xA+Bt4NU3iPvS5A9OgDU9czFr' 'sha384-JqkTz427LEhl6pIxOdMtWHu+yKQQ1hh9DOSQZTIPHUiWVLMFHT7LcrSit0zX7k6s' 'sha384-MtF6RYgUgmMJx65mUrhkBhn57C299x4MS/Ivs2bOR2GFLCuC024sH3zmoBtFCUHU' 'sha384-Ofp8IJJYwpBL48vTMvxShnM/oMDmCEpe7KD474hA7XhMvF3GlqBXgc6Tq0rfwObH' 'sha384-bbHoQCD2QuRVxTbSpUDGG18XKiOrq4uaIRCj/mYMHyOJ3yYsKcl4EOzwDrjy0B+b' 'sha384-8eC0I0N0E7YC+0/TyqGd+lUIiFqTbn0GPgr5QOjTMSqVyEpRWEjoCvmEQ9UJmFc6' 'sha384-gtmhFKBbmP9SwOtOZPc2jK8ImcYGgtPsqz8yJVAR60Hw6a6JWh8LadwlTshn1Gui' 'sha384-UQXKKvgm9nPgYB4m069DBmffczTYQ3tT9TL22wwPqfOHAelhw430djzZzJ3eoADd' 'sha384-NFJWrxAeAr+MRweEwsOstEyEkEdV2X5WxHld4P189naiScrTrGEJBZimLXtjTpKu' 'sha384-bgmT70Gk0Hi20OfKO6GOfReDL7l8vly2r32Asvlf2nus9QI5bjFK30z/T3sZR1GM' 'sha384-HYV2lYjancxZc/8uNgzoQcCuWBJ2f92zW0cu/GXWu18oCLGL4JxdMek/ENCxZ4TE' 'sha384-zuvuRwc3g7NcPXFBpSOZMZHW59pt4EtPzz+ghMjciB4yQTY8bUYBsZt9xou/V6gM' 'sha384-viQ6Yo6tR2yGQx7aVO/zfR8ic37W8+XmLij5LjNIWuRWTXroSh465ZuUjwBqnU77' 'sha384-bUemJiNSKu3htNvnffbpMFkIiTZ6KOWOG2HwX9LuY5AhVCgkZs8srhSGOERY7so1' 'sha384-CN0LCPmvzVVfP3V1AYWH4ETIyjGuGs/Q4gwlMqVwPd8u7W9k7P4kvg3nip7gOywD'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://baserow.io https://tee-metabase.osc-fr1.scalingo.io https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; default-src 'none';"
},
{
"id": "Permissions-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
{
"id": "Cross-Origin-Opener-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "Cross-Origin-Resource-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
- {
- "id": "Cross-Origin-Embedder-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
- "port": "443",
- "severity": "INFO",
- "finding": "credentialless"
- },
{
"id": "X-XSS-Protection",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "0"
},
{
"id": "Access-Control-Allow-Origin",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "*"
},
{
"id": "Permissions-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
{
"id": "Referrer-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "no-referrer"
},
{
"id": "banner_reverseproxy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -57332,7 +58685,7 @@
},
{
"id": "heartbleed",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -57341,7 +58694,7 @@
},
{
"id": "CCS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -57350,7 +58703,7 @@
},
{
"id": "ticketbleed",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -57359,7 +58712,7 @@
},
{
"id": "ROBOT",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -57368,7 +58721,7 @@
},
{
"id": "secure_renego",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -57376,7 +58729,7 @@
},
{
"id": "secure_client_renego",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -57385,7 +58738,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -57394,7 +58747,7 @@
},
{
"id": "BREACH",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -57403,7 +58756,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -57412,14 +58765,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -57428,7 +58781,7 @@
},
{
"id": "FREAK",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -57437,7 +58790,7 @@
},
{
"id": "DROWN",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -57446,7 +58799,7 @@
},
{
"id": "DROWN_hint",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -57455,7 +58808,7 @@
},
{
"id": "LOGJAM",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -57464,7 +58817,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -57473,7 +58826,7 @@
},
{
"id": "BEAST",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -57482,7 +58835,7 @@
},
{
"id": "LUCKY13",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -57491,7 +58844,7 @@
},
{
"id": "winshock",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -57500,7 +58853,7 @@
},
{
"id": "RC4",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -57509,392 +58862,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -57902,7 +59255,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -57910,7 +59263,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -57918,7 +59271,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -57926,7 +59279,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -57934,7 +59287,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -57942,532 +59295,525 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "39 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "2025-01-10 09:00"
},
{
"id": "cert_notAfter",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "2025-04-10 09:00"
},
{
"id": "cert_extlifeSpan",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "http://r10.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "R10 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "R10 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "1737861057"
+ "finding": "1740885061"
},
{
"id": "HSTS_time",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "180 days (=15552000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "includes subdomains"
},
{
"id": "HSTS_preload",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "SAMEORIGIN"
},
{
"id": "X-Content-Type-Options",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
- "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://embed.typeform.com; script-src 'self' 'strict-dynamic' 'sha256-5QjHEvvMSISVlaVqgxJSJ50i0+zgNKuvPz+xUUwl/VE=' 'sha384-VMFSdPkwMECpkq9PkxQ6senCZn9ygw9b2/xg9ReukcK6YYSaiYdhQ/A8KQWlwrHt' 'sha384-YMow5h1tZXniRVUe5ibCoMYEF8eNtPyfutxsuz9NpaLOvFe3b0nLPa2TlW6DAYpc' 'sha384-Dx7buZBsDT2M1Ur1ptIZcPGFxcH12bT1Y9qvdtxsy6EEW2W7BpCHbAkxERk/pf+y' 'sha384-DKX/ja8AzQnYDCUpHkusZudYbWjyIGqaW6i1mpVMAqcfCe/JUkiBgYX6GMGCWBMr' 'sha384-01DZbWgdETfBApznWkl/XBYvby3eY2u7SAtJInkVberai9gligCr3XJk7T5N1d4R' 'sha384-6waTUygXNNQcmVwS6mWo1+1Kn/CnlqPcoRMxgm7vSfkjckaVJ8ubdR+IXwxzHS25' 'sha384-wWY0bXN4CfhR8YQRTUCIneciM5CPipgxjk/hQ1b94XZTbXrGihLZwO7xzTcUWNgA' 'sha384-ew/mTsO/ikeVi2B3yiBybL3MkYOklCHdWZ0kYZnxsV6tdSiVNIXdFujXADigDZN6' 'sha384-ZuP0Kn5HfzTGzi1AzrsLwYURIupwVG7TRei9Cey/R2SvTgHdFhUNu8EFwvy7nIUw' 'sha384-NZpIFlhjiaJ/id1cWARdgyCjksXWm6071UV98rtSTKAUFU6qyTkNQjwaIvMTwI6K' 'sha384-CEfIm0MG4uqmvXfepq5KYCSFNWj1jcaT6U4gmAxm0K+ZfsDoKfi7ts/hqKiPi+SR' 'sha384-zdyAaWd0SBPHHrQWZHlL4kTtdXl9xoG+U3zrnaEco1MSMx4RueoTQK35A2AusJzo' 'sha384-5EHPIyXVX2Z/X1xHD2srdgxCSq5/IyDVNLYmw7aVFNjcmz5sml1TGfa5SMPnHCUO' 'sha384-oYciI9OjbhzUORiHaMHj9MXpgOcmJSumGzQJYppv0+6/Bw+PtOCUH3FAoyJxY/yH'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://embed.typeform.com https://api.typeform.com https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://form.typeform.com; default-src 'none';"
+ "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; script-src 'self' 'strict-dynamic' 'sha256-QqQusovmjMmhZSsjn3BMrqkpqqTdM9XT+9whcq8zxzI=' 'sha384-f1YKi4fm4EzFoLnEJmQrOvhGHn/YUImUqrZlo+6En8UbpxESN3Tu3i3PtxQkMpTW' 'sha384-tGPNOjUSfzR7z3Wejs0zytxr1R8APKdd8V//6s/WI62/s+7cMQyO9h/ObT9S4Hy1' 'sha384-n53OgnVAGgq87usZQEB/aTF/dMaJx+G8nPAvyaHvD6p3iqx7H9gLAJwJvD/z7t0E' 'sha384-vCIfPh0nFBe9HT4JSU2SnSOrIquKLUh9ZeZeDrHKgxAtmBHWk7jpcfPxQgH8r9LH' 'sha384-ZyUH7uRYgWpkmhDvABP4g+arbFckxJr9qHT66z677rOz2IjTToF6AUgB9EoAQbeM' 'sha384-Dr+aX6V41ZjcXzKA7MO9kL8G8UiT0Xj7ftyjWs8O3jf1aYEAAwO5lDk1AjgCayEH' 'sha384-4PIvYbGUsVDJiQxNPidcuP7SE/xD53XrTI9p3og02elstD0NfCDwNropZ0ZYVbsb' 'sha384-pRpwQBksidtrEtoFqanwChEy2lTPIa+grk1BDM7i9PittRcnToWyHQ0s9sEMT+yt' 'sha384-eC847ZokYzLwMLX5nKfoFIHEbir7z998hzKsXpjRG2+hFZBSQ64rFcYmARbg2kEB' 'sha384-76dpjAYPgNgZR+2TgSV5LSpE1KuLS2+OFArFRgSbXRlqX+qttpnyI0TagD2TzM5P' 'sha384-8ZiMjM0xbZrW6L7ZunPM6/cS1+obYwAU4uQ4N1zU+Uj8WMRGlRglyA/qCQjlAf4k' 'sha384-cNTwmRieyFCapvJD4vtMdOd7gYdyzKKBrfRhmI/tOj1l8X3Ynk6KtoBtVB4SxP23' 'sha384-tGsnqnMypBMJ0pUZJJVdMh/q58nVzYxR9XET7ei0HYb1aiRZsgWIMm2Zlrl0hTZw' 'sha384-jhvJxYvt0TU3Vv9LakFoLeto8yWqLyXD5j5iEUhlpFAOWZlGRd+gsqKS0i954nXV' 'sha384-CLNQvTudURZ0mHBYjwFh5WxreaDe7MM5/Er9O67xA+Bt4NU3iPvS5A9OgDU9czFr' 'sha384-JqkTz427LEhl6pIxOdMtWHu+yKQQ1hh9DOSQZTIPHUiWVLMFHT7LcrSit0zX7k6s' 'sha384-MtF6RYgUgmMJx65mUrhkBhn57C299x4MS/Ivs2bOR2GFLCuC024sH3zmoBtFCUHU' 'sha384-Ofp8IJJYwpBL48vTMvxShnM/oMDmCEpe7KD474hA7XhMvF3GlqBXgc6Tq0rfwObH' 'sha384-bbHoQCD2QuRVxTbSpUDGG18XKiOrq4uaIRCj/mYMHyOJ3yYsKcl4EOzwDrjy0B+b' 'sha384-8eC0I0N0E7YC+0/TyqGd+lUIiFqTbn0GPgr5QOjTMSqVyEpRWEjoCvmEQ9UJmFc6' 'sha384-gtmhFKBbmP9SwOtOZPc2jK8ImcYGgtPsqz8yJVAR60Hw6a6JWh8LadwlTshn1Gui' 'sha384-UQXKKvgm9nPgYB4m069DBmffczTYQ3tT9TL22wwPqfOHAelhw430djzZzJ3eoADd' 'sha384-NFJWrxAeAr+MRweEwsOstEyEkEdV2X5WxHld4P189naiScrTrGEJBZimLXtjTpKu' 'sha384-bgmT70Gk0Hi20OfKO6GOfReDL7l8vly2r32Asvlf2nus9QI5bjFK30z/T3sZR1GM' 'sha384-HYV2lYjancxZc/8uNgzoQcCuWBJ2f92zW0cu/GXWu18oCLGL4JxdMek/ENCxZ4TE' 'sha384-zuvuRwc3g7NcPXFBpSOZMZHW59pt4EtPzz+ghMjciB4yQTY8bUYBsZt9xou/V6gM' 'sha384-viQ6Yo6tR2yGQx7aVO/zfR8ic37W8+XmLij5LjNIWuRWTXroSh465ZuUjwBqnU77' 'sha384-bUemJiNSKu3htNvnffbpMFkIiTZ6KOWOG2HwX9LuY5AhVCgkZs8srhSGOERY7so1' 'sha384-CN0LCPmvzVVfP3V1AYWH4ETIyjGuGs/Q4gwlMqVwPd8u7W9k7P4kvg3nip7gOywD'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://baserow.io https://tee-metabase.osc-fr1.scalingo.io https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; default-src 'none';"
},
{
"id": "Permissions-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
{
"id": "Cross-Origin-Opener-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "Cross-Origin-Resource-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
- {
- "id": "Cross-Origin-Embedder-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
- "port": "443",
- "severity": "INFO",
- "finding": "credentialless"
- },
{
"id": "X-XSS-Protection",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "0"
},
{
"id": "Access-Control-Allow-Origin",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "*"
},
{
"id": "Permissions-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
{
"id": "Referrer-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "no-referrer"
},
{
"id": "banner_reverseproxy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -58475,7 +59821,7 @@
},
{
"id": "heartbleed",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -58484,7 +59830,7 @@
},
{
"id": "CCS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -58493,7 +59839,7 @@
},
{
"id": "ticketbleed",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -58502,7 +59848,7 @@
},
{
"id": "ROBOT",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -58511,7 +59857,7 @@
},
{
"id": "secure_renego",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -58519,7 +59865,7 @@
},
{
"id": "secure_client_renego",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -58528,7 +59874,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -58537,7 +59883,7 @@
},
{
"id": "BREACH",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -58546,7 +59892,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -58555,14 +59901,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -58571,7 +59917,7 @@
},
{
"id": "FREAK",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -58580,7 +59926,7 @@
},
{
"id": "DROWN",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -58589,7 +59935,7 @@
},
{
"id": "DROWN_hint",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -58598,7 +59944,7 @@
},
{
"id": "LOGJAM",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -58607,7 +59953,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -58616,7 +59962,7 @@
},
{
"id": "BEAST",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -58625,7 +59971,7 @@
},
{
"id": "LUCKY13",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -58634,7 +59980,7 @@
},
{
"id": "winshock",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -58643,7 +59989,7 @@
},
{
"id": "RC4",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -58652,392 +59998,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -59045,7 +60391,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -59053,7 +60399,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -59061,7 +60407,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -59069,7 +60415,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -59077,7 +60423,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -59085,532 +60431,525 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "39 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "2025-01-10 09:00"
},
{
"id": "cert_notAfter",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "2025-04-10 09:00"
},
{
"id": "cert_extlifeSpan",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "http://r10.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "R10 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "R10 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "0 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "1737861161"
+ "finding": "1740885164"
},
{
"id": "HSTS_time",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "180 days (=15552000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "includes subdomains"
},
{
"id": "HSTS_preload",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "SAMEORIGIN"
},
{
"id": "X-Content-Type-Options",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
- "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://embed.typeform.com; script-src 'self' 'strict-dynamic' 'sha256-5QjHEvvMSISVlaVqgxJSJ50i0+zgNKuvPz+xUUwl/VE=' 'sha384-VMFSdPkwMECpkq9PkxQ6senCZn9ygw9b2/xg9ReukcK6YYSaiYdhQ/A8KQWlwrHt' 'sha384-YMow5h1tZXniRVUe5ibCoMYEF8eNtPyfutxsuz9NpaLOvFe3b0nLPa2TlW6DAYpc' 'sha384-Dx7buZBsDT2M1Ur1ptIZcPGFxcH12bT1Y9qvdtxsy6EEW2W7BpCHbAkxERk/pf+y' 'sha384-DKX/ja8AzQnYDCUpHkusZudYbWjyIGqaW6i1mpVMAqcfCe/JUkiBgYX6GMGCWBMr' 'sha384-01DZbWgdETfBApznWkl/XBYvby3eY2u7SAtJInkVberai9gligCr3XJk7T5N1d4R' 'sha384-6waTUygXNNQcmVwS6mWo1+1Kn/CnlqPcoRMxgm7vSfkjckaVJ8ubdR+IXwxzHS25' 'sha384-wWY0bXN4CfhR8YQRTUCIneciM5CPipgxjk/hQ1b94XZTbXrGihLZwO7xzTcUWNgA' 'sha384-ew/mTsO/ikeVi2B3yiBybL3MkYOklCHdWZ0kYZnxsV6tdSiVNIXdFujXADigDZN6' 'sha384-ZuP0Kn5HfzTGzi1AzrsLwYURIupwVG7TRei9Cey/R2SvTgHdFhUNu8EFwvy7nIUw' 'sha384-NZpIFlhjiaJ/id1cWARdgyCjksXWm6071UV98rtSTKAUFU6qyTkNQjwaIvMTwI6K' 'sha384-CEfIm0MG4uqmvXfepq5KYCSFNWj1jcaT6U4gmAxm0K+ZfsDoKfi7ts/hqKiPi+SR' 'sha384-zdyAaWd0SBPHHrQWZHlL4kTtdXl9xoG+U3zrnaEco1MSMx4RueoTQK35A2AusJzo' 'sha384-5EHPIyXVX2Z/X1xHD2srdgxCSq5/IyDVNLYmw7aVFNjcmz5sml1TGfa5SMPnHCUO' 'sha384-oYciI9OjbhzUORiHaMHj9MXpgOcmJSumGzQJYppv0+6/Bw+PtOCUH3FAoyJxY/yH'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://embed.typeform.com https://api.typeform.com https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://form.typeform.com; default-src 'none';"
+ "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; script-src 'self' 'strict-dynamic' 'sha256-QqQusovmjMmhZSsjn3BMrqkpqqTdM9XT+9whcq8zxzI=' 'sha384-f1YKi4fm4EzFoLnEJmQrOvhGHn/YUImUqrZlo+6En8UbpxESN3Tu3i3PtxQkMpTW' 'sha384-tGPNOjUSfzR7z3Wejs0zytxr1R8APKdd8V//6s/WI62/s+7cMQyO9h/ObT9S4Hy1' 'sha384-n53OgnVAGgq87usZQEB/aTF/dMaJx+G8nPAvyaHvD6p3iqx7H9gLAJwJvD/z7t0E' 'sha384-vCIfPh0nFBe9HT4JSU2SnSOrIquKLUh9ZeZeDrHKgxAtmBHWk7jpcfPxQgH8r9LH' 'sha384-ZyUH7uRYgWpkmhDvABP4g+arbFckxJr9qHT66z677rOz2IjTToF6AUgB9EoAQbeM' 'sha384-Dr+aX6V41ZjcXzKA7MO9kL8G8UiT0Xj7ftyjWs8O3jf1aYEAAwO5lDk1AjgCayEH' 'sha384-4PIvYbGUsVDJiQxNPidcuP7SE/xD53XrTI9p3og02elstD0NfCDwNropZ0ZYVbsb' 'sha384-pRpwQBksidtrEtoFqanwChEy2lTPIa+grk1BDM7i9PittRcnToWyHQ0s9sEMT+yt' 'sha384-eC847ZokYzLwMLX5nKfoFIHEbir7z998hzKsXpjRG2+hFZBSQ64rFcYmARbg2kEB' 'sha384-76dpjAYPgNgZR+2TgSV5LSpE1KuLS2+OFArFRgSbXRlqX+qttpnyI0TagD2TzM5P' 'sha384-8ZiMjM0xbZrW6L7ZunPM6/cS1+obYwAU4uQ4N1zU+Uj8WMRGlRglyA/qCQjlAf4k' 'sha384-cNTwmRieyFCapvJD4vtMdOd7gYdyzKKBrfRhmI/tOj1l8X3Ynk6KtoBtVB4SxP23' 'sha384-tGsnqnMypBMJ0pUZJJVdMh/q58nVzYxR9XET7ei0HYb1aiRZsgWIMm2Zlrl0hTZw' 'sha384-jhvJxYvt0TU3Vv9LakFoLeto8yWqLyXD5j5iEUhlpFAOWZlGRd+gsqKS0i954nXV' 'sha384-CLNQvTudURZ0mHBYjwFh5WxreaDe7MM5/Er9O67xA+Bt4NU3iPvS5A9OgDU9czFr' 'sha384-JqkTz427LEhl6pIxOdMtWHu+yKQQ1hh9DOSQZTIPHUiWVLMFHT7LcrSit0zX7k6s' 'sha384-MtF6RYgUgmMJx65mUrhkBhn57C299x4MS/Ivs2bOR2GFLCuC024sH3zmoBtFCUHU' 'sha384-Ofp8IJJYwpBL48vTMvxShnM/oMDmCEpe7KD474hA7XhMvF3GlqBXgc6Tq0rfwObH' 'sha384-bbHoQCD2QuRVxTbSpUDGG18XKiOrq4uaIRCj/mYMHyOJ3yYsKcl4EOzwDrjy0B+b' 'sha384-8eC0I0N0E7YC+0/TyqGd+lUIiFqTbn0GPgr5QOjTMSqVyEpRWEjoCvmEQ9UJmFc6' 'sha384-gtmhFKBbmP9SwOtOZPc2jK8ImcYGgtPsqz8yJVAR60Hw6a6JWh8LadwlTshn1Gui' 'sha384-UQXKKvgm9nPgYB4m069DBmffczTYQ3tT9TL22wwPqfOHAelhw430djzZzJ3eoADd' 'sha384-NFJWrxAeAr+MRweEwsOstEyEkEdV2X5WxHld4P189naiScrTrGEJBZimLXtjTpKu' 'sha384-bgmT70Gk0Hi20OfKO6GOfReDL7l8vly2r32Asvlf2nus9QI5bjFK30z/T3sZR1GM' 'sha384-HYV2lYjancxZc/8uNgzoQcCuWBJ2f92zW0cu/GXWu18oCLGL4JxdMek/ENCxZ4TE' 'sha384-zuvuRwc3g7NcPXFBpSOZMZHW59pt4EtPzz+ghMjciB4yQTY8bUYBsZt9xou/V6gM' 'sha384-viQ6Yo6tR2yGQx7aVO/zfR8ic37W8+XmLij5LjNIWuRWTXroSh465ZuUjwBqnU77' 'sha384-bUemJiNSKu3htNvnffbpMFkIiTZ6KOWOG2HwX9LuY5AhVCgkZs8srhSGOERY7so1' 'sha384-CN0LCPmvzVVfP3V1AYWH4ETIyjGuGs/Q4gwlMqVwPd8u7W9k7P4kvg3nip7gOywD'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://baserow.io https://tee-metabase.osc-fr1.scalingo.io https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; default-src 'none';"
},
{
"id": "Permissions-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
{
"id": "Cross-Origin-Opener-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "Cross-Origin-Resource-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
- {
- "id": "Cross-Origin-Embedder-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
- "port": "443",
- "severity": "INFO",
- "finding": "credentialless"
- },
{
"id": "X-XSS-Protection",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "0"
},
{
"id": "Access-Control-Allow-Origin",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "*"
},
{
"id": "Permissions-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
{
"id": "Referrer-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "no-referrer"
},
{
"id": "banner_reverseproxy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -59618,7 +60957,7 @@
},
{
"id": "heartbleed",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -59627,7 +60966,7 @@
},
{
"id": "CCS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -59636,7 +60975,7 @@
},
{
"id": "ticketbleed",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -59645,7 +60984,7 @@
},
{
"id": "ROBOT",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -59654,7 +60993,7 @@
},
{
"id": "secure_renego",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -59662,7 +61001,7 @@
},
{
"id": "secure_client_renego",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -59671,7 +61010,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -59680,7 +61019,7 @@
},
{
"id": "BREACH",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -59689,7 +61028,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -59698,14 +61037,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -59714,7 +61053,7 @@
},
{
"id": "FREAK",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -59723,7 +61062,7 @@
},
{
"id": "DROWN",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -59732,7 +61071,7 @@
},
{
"id": "DROWN_hint",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -59741,7 +61080,7 @@
},
{
"id": "LOGJAM",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -59750,7 +61089,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -59759,7 +61098,7 @@
},
{
"id": "BEAST",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -59768,7 +61107,7 @@
},
{
"id": "LUCKY13",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -59777,7 +61116,7 @@
},
{
"id": "winshock",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -59786,7 +61125,7 @@
},
{
"id": "RC4",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -59795,392 +61134,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -60188,7 +61527,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -60196,7 +61535,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -60204,7 +61543,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -60212,7 +61551,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -60220,7 +61559,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -60228,532 +61567,525 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "39 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2025-01-10 09:00"
},
{
"id": "cert_notAfter",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "2025-04-10 09:00"
},
{
"id": "cert_extlifeSpan",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http://r10.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "R10 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "R10 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "-1 seconds from localtime"
+ "finding": "0 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "1737861264"
+ "finding": "1740885265"
},
{
"id": "HSTS_time",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "180 days (=15552000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "includes subdomains"
},
{
"id": "HSTS_preload",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "SAMEORIGIN"
},
{
"id": "X-Content-Type-Options",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
- "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://embed.typeform.com; script-src 'self' 'strict-dynamic' 'sha256-5QjHEvvMSISVlaVqgxJSJ50i0+zgNKuvPz+xUUwl/VE=' 'sha384-VMFSdPkwMECpkq9PkxQ6senCZn9ygw9b2/xg9ReukcK6YYSaiYdhQ/A8KQWlwrHt' 'sha384-YMow5h1tZXniRVUe5ibCoMYEF8eNtPyfutxsuz9NpaLOvFe3b0nLPa2TlW6DAYpc' 'sha384-Dx7buZBsDT2M1Ur1ptIZcPGFxcH12bT1Y9qvdtxsy6EEW2W7BpCHbAkxERk/pf+y' 'sha384-DKX/ja8AzQnYDCUpHkusZudYbWjyIGqaW6i1mpVMAqcfCe/JUkiBgYX6GMGCWBMr' 'sha384-01DZbWgdETfBApznWkl/XBYvby3eY2u7SAtJInkVberai9gligCr3XJk7T5N1d4R' 'sha384-6waTUygXNNQcmVwS6mWo1+1Kn/CnlqPcoRMxgm7vSfkjckaVJ8ubdR+IXwxzHS25' 'sha384-wWY0bXN4CfhR8YQRTUCIneciM5CPipgxjk/hQ1b94XZTbXrGihLZwO7xzTcUWNgA' 'sha384-ew/mTsO/ikeVi2B3yiBybL3MkYOklCHdWZ0kYZnxsV6tdSiVNIXdFujXADigDZN6' 'sha384-ZuP0Kn5HfzTGzi1AzrsLwYURIupwVG7TRei9Cey/R2SvTgHdFhUNu8EFwvy7nIUw' 'sha384-NZpIFlhjiaJ/id1cWARdgyCjksXWm6071UV98rtSTKAUFU6qyTkNQjwaIvMTwI6K' 'sha384-CEfIm0MG4uqmvXfepq5KYCSFNWj1jcaT6U4gmAxm0K+ZfsDoKfi7ts/hqKiPi+SR' 'sha384-zdyAaWd0SBPHHrQWZHlL4kTtdXl9xoG+U3zrnaEco1MSMx4RueoTQK35A2AusJzo' 'sha384-5EHPIyXVX2Z/X1xHD2srdgxCSq5/IyDVNLYmw7aVFNjcmz5sml1TGfa5SMPnHCUO' 'sha384-oYciI9OjbhzUORiHaMHj9MXpgOcmJSumGzQJYppv0+6/Bw+PtOCUH3FAoyJxY/yH'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://embed.typeform.com https://api.typeform.com https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://form.typeform.com; default-src 'none';"
+ "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; script-src 'self' 'strict-dynamic' 'sha256-QqQusovmjMmhZSsjn3BMrqkpqqTdM9XT+9whcq8zxzI=' 'sha384-f1YKi4fm4EzFoLnEJmQrOvhGHn/YUImUqrZlo+6En8UbpxESN3Tu3i3PtxQkMpTW' 'sha384-tGPNOjUSfzR7z3Wejs0zytxr1R8APKdd8V//6s/WI62/s+7cMQyO9h/ObT9S4Hy1' 'sha384-n53OgnVAGgq87usZQEB/aTF/dMaJx+G8nPAvyaHvD6p3iqx7H9gLAJwJvD/z7t0E' 'sha384-vCIfPh0nFBe9HT4JSU2SnSOrIquKLUh9ZeZeDrHKgxAtmBHWk7jpcfPxQgH8r9LH' 'sha384-ZyUH7uRYgWpkmhDvABP4g+arbFckxJr9qHT66z677rOz2IjTToF6AUgB9EoAQbeM' 'sha384-Dr+aX6V41ZjcXzKA7MO9kL8G8UiT0Xj7ftyjWs8O3jf1aYEAAwO5lDk1AjgCayEH' 'sha384-4PIvYbGUsVDJiQxNPidcuP7SE/xD53XrTI9p3og02elstD0NfCDwNropZ0ZYVbsb' 'sha384-pRpwQBksidtrEtoFqanwChEy2lTPIa+grk1BDM7i9PittRcnToWyHQ0s9sEMT+yt' 'sha384-eC847ZokYzLwMLX5nKfoFIHEbir7z998hzKsXpjRG2+hFZBSQ64rFcYmARbg2kEB' 'sha384-76dpjAYPgNgZR+2TgSV5LSpE1KuLS2+OFArFRgSbXRlqX+qttpnyI0TagD2TzM5P' 'sha384-8ZiMjM0xbZrW6L7ZunPM6/cS1+obYwAU4uQ4N1zU+Uj8WMRGlRglyA/qCQjlAf4k' 'sha384-cNTwmRieyFCapvJD4vtMdOd7gYdyzKKBrfRhmI/tOj1l8X3Ynk6KtoBtVB4SxP23' 'sha384-tGsnqnMypBMJ0pUZJJVdMh/q58nVzYxR9XET7ei0HYb1aiRZsgWIMm2Zlrl0hTZw' 'sha384-jhvJxYvt0TU3Vv9LakFoLeto8yWqLyXD5j5iEUhlpFAOWZlGRd+gsqKS0i954nXV' 'sha384-CLNQvTudURZ0mHBYjwFh5WxreaDe7MM5/Er9O67xA+Bt4NU3iPvS5A9OgDU9czFr' 'sha384-JqkTz427LEhl6pIxOdMtWHu+yKQQ1hh9DOSQZTIPHUiWVLMFHT7LcrSit0zX7k6s' 'sha384-MtF6RYgUgmMJx65mUrhkBhn57C299x4MS/Ivs2bOR2GFLCuC024sH3zmoBtFCUHU' 'sha384-Ofp8IJJYwpBL48vTMvxShnM/oMDmCEpe7KD474hA7XhMvF3GlqBXgc6Tq0rfwObH' 'sha384-bbHoQCD2QuRVxTbSpUDGG18XKiOrq4uaIRCj/mYMHyOJ3yYsKcl4EOzwDrjy0B+b' 'sha384-8eC0I0N0E7YC+0/TyqGd+lUIiFqTbn0GPgr5QOjTMSqVyEpRWEjoCvmEQ9UJmFc6' 'sha384-gtmhFKBbmP9SwOtOZPc2jK8ImcYGgtPsqz8yJVAR60Hw6a6JWh8LadwlTshn1Gui' 'sha384-UQXKKvgm9nPgYB4m069DBmffczTYQ3tT9TL22wwPqfOHAelhw430djzZzJ3eoADd' 'sha384-NFJWrxAeAr+MRweEwsOstEyEkEdV2X5WxHld4P189naiScrTrGEJBZimLXtjTpKu' 'sha384-bgmT70Gk0Hi20OfKO6GOfReDL7l8vly2r32Asvlf2nus9QI5bjFK30z/T3sZR1GM' 'sha384-HYV2lYjancxZc/8uNgzoQcCuWBJ2f92zW0cu/GXWu18oCLGL4JxdMek/ENCxZ4TE' 'sha384-zuvuRwc3g7NcPXFBpSOZMZHW59pt4EtPzz+ghMjciB4yQTY8bUYBsZt9xou/V6gM' 'sha384-viQ6Yo6tR2yGQx7aVO/zfR8ic37W8+XmLij5LjNIWuRWTXroSh465ZuUjwBqnU77' 'sha384-bUemJiNSKu3htNvnffbpMFkIiTZ6KOWOG2HwX9LuY5AhVCgkZs8srhSGOERY7so1' 'sha384-CN0LCPmvzVVfP3V1AYWH4ETIyjGuGs/Q4gwlMqVwPd8u7W9k7P4kvg3nip7gOywD'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://baserow.io https://tee-metabase.osc-fr1.scalingo.io https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; default-src 'none';"
},
{
"id": "Permissions-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
{
"id": "Cross-Origin-Opener-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "Cross-Origin-Resource-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
- {
- "id": "Cross-Origin-Embedder-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
- "port": "443",
- "severity": "INFO",
- "finding": "credentialless"
- },
{
"id": "X-XSS-Protection",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "0"
},
{
"id": "Access-Control-Allow-Origin",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "*"
},
{
"id": "Permissions-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
{
"id": "Referrer-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "no-referrer"
},
{
"id": "banner_reverseproxy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -60761,7 +62093,7 @@
},
{
"id": "heartbleed",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -60770,7 +62102,7 @@
},
{
"id": "CCS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -60779,7 +62111,7 @@
},
{
"id": "ticketbleed",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -60788,7 +62120,7 @@
},
{
"id": "ROBOT",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -60797,7 +62129,7 @@
},
{
"id": "secure_renego",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -60805,7 +62137,7 @@
},
{
"id": "secure_client_renego",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -60814,7 +62146,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -60823,7 +62155,7 @@
},
{
"id": "BREACH",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -60832,7 +62164,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -60841,14 +62173,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -60857,7 +62189,7 @@
},
{
"id": "FREAK",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -60866,7 +62198,7 @@
},
{
"id": "DROWN",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -60875,7 +62207,7 @@
},
{
"id": "DROWN_hint",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -60884,7 +62216,7 @@
},
{
"id": "LOGJAM",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -60893,7 +62225,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -60902,7 +62234,7 @@
},
{
"id": "BEAST",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -60911,7 +62243,7 @@
},
{
"id": "LUCKY13",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -60920,7 +62252,7 @@
},
{
"id": "winshock",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -60929,7 +62261,7 @@
},
{
"id": "RC4",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -60938,325 +62270,325 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "scanTime",
- "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "422"
+ "finding": "410"
}
],
"thirdparties": {
@@ -61394,24 +62726,6 @@
],
"rootPath": true
},
- {
- "slug": "hsts",
- "name": "HSTS",
- "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.",
- "confidence": 100,
- "version": null,
- "icon": "default.svg",
- "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1",
- "cpe": null,
- "categories": [
- {
- "id": 16,
- "slug": "security",
- "name": "Security"
- }
- ],
- "rootPath": true
- },
{
"slug": "ovhcloud",
"name": "OVHcloud",
@@ -61435,6 +62749,24 @@
],
"rootPath": true
},
+ {
+ "slug": "hsts",
+ "name": "HSTS",
+ "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.",
+ "confidence": 100,
+ "version": null,
+ "icon": "default.svg",
+ "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1",
+ "cpe": null,
+ "categories": [
+ {
+ "id": 16,
+ "slug": "security",
+ "name": "Security"
+ }
+ ],
+ "rootPath": true
+ },
{
"slug": "open-graph",
"name": "Open Graph",
@@ -61458,7 +62790,7 @@
"zap": {
"@programName": "ZAP",
"@version": "2.16.0",
- "@generated": "Sun, 26 Jan 2025 03:02:26",
+ "@generated": "Sun, 2 Mar 2025 03:06:17",
"site": [
{
"@name": "https://mission-transition-ecologique.beta.gouv.fr",
@@ -61506,7 +62838,7 @@
"riskcode": "1",
"confidence": "2",
"riskdesc": "Low (Medium)",
- "desc": "Cross-Origin-Resource-Policy header is an opt-in header designed to counter side-channels attacks like Spectre. Resource should be specifically set as shareable amongst different origins.
"
+ "desc": "Cross-Origin-Embedder-Policy header is a response header that prevents a document from loading any cross-origin resources that don't explicitly grant the document permission (using CORP or CORS).
"
},
{
"name": "Permissions Policy Header Not Set",
@@ -61543,13 +62875,6 @@
"riskdesc": "Informational (Medium)",
"desc": "The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.
"
},
- {
- "name": "Non-Storable Content",
- "riskcode": "0",
- "confidence": "2",
- "riskdesc": "Informational (Medium)",
- "desc": "The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.
"
- },
{
"name": "Re-examine Cache-control Directives",
"riskcode": "0",
@@ -62348,7 +63673,7 @@
],
"screenshot": true,
"stats": {
- "grade": "F",
+ "grade": "A",
"url": "https://mission-transition-ecologique.beta.gouv.fr",
"uri": "stats"
},
@@ -62462,15 +63787,15 @@
"width": 1920,
"height": 1080,
"url": "https://mission-transition-ecologique.beta.gouv.fr",
- "size": 2367.635,
- "nodes": 390,
- "requests": 57,
- "grade": "C",
- "score": 60,
- "ges": 1.8,
- "water": 2.7,
+ "size": 2667.779,
+ "nodes": 441,
+ "requests": 73,
+ "grade": "D",
+ "score": 54,
+ "ges": 1.92,
+ "water": 2.88,
"ecoindex_version": "5.4.2",
- "date": "2025-01-26 03:03:39.934983",
+ "date": "2025-03-02 03:04:05.181635",
"page_type": null
}
],
@@ -62485,6 +63810,9 @@
"apdexGrade": "A",
"uptime": 100,
"uptimeGrade": "A",
+ "nmapGrade": "A",
+ "nmapOpenPortsCount": 2,
+ "nmapOpenPortsGrade": "A",
"dependabotGrade": "A",
"dependabotCount": 0,
"testsslExpireSoon": false,
@@ -62506,13 +63834,13 @@
"lighthouse_seoGrade": "A",
"lighthouse_pwa": 0.3,
"lighthouse_pwaGrade": "E",
- "statsGrade": "F",
+ "statsGrade": "A",
"githubRepositoryGrade": "A",
"budgetPageGrade": "A",
"declaration-a11y": "C",
"declaration-rgpd-ml": "D",
"declaration-rgpd-pc": "D",
- "ecoindexGrade": "C",
+ "ecoindexGrade": "D",
"dsfrGrade": "A"
}
},
@@ -62539,9 +63867,86 @@
"stats": false
}
},
- "http": null,
- "updownio": null,
- "nmap": null,
+ "http": {
+ "error": "Site did respond with an unexpected HTTP status code 429."
+ },
+ "updownio": {
+ "token": "xmzk",
+ "url": "https://mission-transition-ecologique.beta.gouv.fr/api/health",
+ "type": "https",
+ "alias": "Transition Écologique des Entreprises - API",
+ "uptime": 100,
+ "down": false,
+ "down_since": null,
+ "up_since": "2025-02-25T01:04:33Z",
+ "error": null,
+ "period": 300,
+ "string_match": "",
+ "enabled": true,
+ "published": true,
+ "recipients": [
+ "email:2047203681"
+ ],
+ "last_check_at": "2025-03-02T03:18:47Z",
+ "next_check_at": "2025-03-02T03:23:47Z",
+ "created_at": "2024-06-27T10:04:09Z",
+ "mute_until": null,
+ "last_status": 200,
+ "apdex_t": 0.5,
+ "disabled_locations": [
+ "lan",
+ "mia",
+ "bhs",
+ "sin",
+ "tok",
+ "syd"
+ ],
+ "custom_headers": {},
+ "favicon_url": "https://mission-transition-ecologique.beta.gouv.fr/favicon.ico",
+ "http_verb": "GET/HEAD",
+ "http_body": "",
+ "ssl": {
+ "tested_at": "2025-03-02T03:18:47Z",
+ "expires_at": "2025-04-10T09:00:41Z",
+ "valid": true,
+ "error": null
+ },
+ "metrics": {
+ "apdex": 1,
+ "timings": {
+ "redirect": 0,
+ "namelookup": 10,
+ "connection": 21,
+ "handshake": 29,
+ "response": 30,
+ "total": 90
+ }
+ },
+ "uptimeGrade": "A",
+ "apdexGrade": "A"
+ },
+ "nmap": {
+ "host": "mission-transition-ecologique.beta.gouv.fr",
+ "protocol": "tcp",
+ "closed_ports": "998",
+ "open_ports": [
+ {
+ "service": {
+ "name": "http",
+ "id": "80",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "https",
+ "id": "443",
+ "vulnerabilities": []
+ }
+ }
+ ],
+ "grade": "A"
+ },
"dependabot": {
"totalCount": 0,
"grade": "A",
@@ -62560,77 +63965,77 @@
"testssl": [
{
"id": "service",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -62638,7 +64043,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -62646,7 +64051,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -62654,7 +64059,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -62662,7 +64067,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -62670,7 +64075,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -62678,497 +64083,525 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "39 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2025-01-10 09:00"
},
{
"id": "cert_notAfter",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "2025-04-10 09:00"
},
{
"id": "cert_extlifeSpan",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http://r10.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "R10 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "R10 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "0 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "1736652545"
+ "finding": "1740884903"
},
{
"id": "HSTS_time",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "180 days (=15552000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "includes subdomains"
},
{
"id": "HSTS_preload",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "SAMEORIGIN"
},
{
"id": "X-Content-Type-Options",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
- "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://embed.typeform.com; script-src 'self' 'strict-dynamic' 'sha256-DOXMGNUTv1cK/f2ugjJL9ouZQi+vTAl7Y9rhuH51fvM=' 'sha384-JNI1bA6IzNVq58UvdOUB6pMkpXZn48uW44ge8HrEs88jKrfC9xCreFlUbyl6mApZ' 'sha384-oXrgKPMGCD5dAYLbcPnoVJn70gXa39MutE+u90OuysE5tDh5rI2v4yJYTdrT6Bnn'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://embed.typeform.com https://api.typeform.com https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://form.typeform.com; default-src 'none';"
+ "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; script-src 'self' 'strict-dynamic' 'sha256-QqQusovmjMmhZSsjn3BMrqkpqqTdM9XT+9whcq8zxzI=' 'sha384-f1YKi4fm4EzFoLnEJmQrOvhGHn/YUImUqrZlo+6En8UbpxESN3Tu3i3PtxQkMpTW' 'sha384-tGPNOjUSfzR7z3Wejs0zytxr1R8APKdd8V//6s/WI62/s+7cMQyO9h/ObT9S4Hy1' 'sha384-n53OgnVAGgq87usZQEB/aTF/dMaJx+G8nPAvyaHvD6p3iqx7H9gLAJwJvD/z7t0E' 'sha384-vCIfPh0nFBe9HT4JSU2SnSOrIquKLUh9ZeZeDrHKgxAtmBHWk7jpcfPxQgH8r9LH' 'sha384-ZyUH7uRYgWpkmhDvABP4g+arbFckxJr9qHT66z677rOz2IjTToF6AUgB9EoAQbeM' 'sha384-Dr+aX6V41ZjcXzKA7MO9kL8G8UiT0Xj7ftyjWs8O3jf1aYEAAwO5lDk1AjgCayEH' 'sha384-4PIvYbGUsVDJiQxNPidcuP7SE/xD53XrTI9p3og02elstD0NfCDwNropZ0ZYVbsb' 'sha384-pRpwQBksidtrEtoFqanwChEy2lTPIa+grk1BDM7i9PittRcnToWyHQ0s9sEMT+yt' 'sha384-eC847ZokYzLwMLX5nKfoFIHEbir7z998hzKsXpjRG2+hFZBSQ64rFcYmARbg2kEB' 'sha384-76dpjAYPgNgZR+2TgSV5LSpE1KuLS2+OFArFRgSbXRlqX+qttpnyI0TagD2TzM5P' 'sha384-8ZiMjM0xbZrW6L7ZunPM6/cS1+obYwAU4uQ4N1zU+Uj8WMRGlRglyA/qCQjlAf4k' 'sha384-cNTwmRieyFCapvJD4vtMdOd7gYdyzKKBrfRhmI/tOj1l8X3Ynk6KtoBtVB4SxP23' 'sha384-tGsnqnMypBMJ0pUZJJVdMh/q58nVzYxR9XET7ei0HYb1aiRZsgWIMm2Zlrl0hTZw' 'sha384-jhvJxYvt0TU3Vv9LakFoLeto8yWqLyXD5j5iEUhlpFAOWZlGRd+gsqKS0i954nXV' 'sha384-CLNQvTudURZ0mHBYjwFh5WxreaDe7MM5/Er9O67xA+Bt4NU3iPvS5A9OgDU9czFr' 'sha384-JqkTz427LEhl6pIxOdMtWHu+yKQQ1hh9DOSQZTIPHUiWVLMFHT7LcrSit0zX7k6s' 'sha384-MtF6RYgUgmMJx65mUrhkBhn57C299x4MS/Ivs2bOR2GFLCuC024sH3zmoBtFCUHU' 'sha384-Ofp8IJJYwpBL48vTMvxShnM/oMDmCEpe7KD474hA7XhMvF3GlqBXgc6Tq0rfwObH' 'sha384-bbHoQCD2QuRVxTbSpUDGG18XKiOrq4uaIRCj/mYMHyOJ3yYsKcl4EOzwDrjy0B+b' 'sha384-8eC0I0N0E7YC+0/TyqGd+lUIiFqTbn0GPgr5QOjTMSqVyEpRWEjoCvmEQ9UJmFc6' 'sha384-gtmhFKBbmP9SwOtOZPc2jK8ImcYGgtPsqz8yJVAR60Hw6a6JWh8LadwlTshn1Gui' 'sha384-UQXKKvgm9nPgYB4m069DBmffczTYQ3tT9TL22wwPqfOHAelhw430djzZzJ3eoADd' 'sha384-NFJWrxAeAr+MRweEwsOstEyEkEdV2X5WxHld4P189naiScrTrGEJBZimLXtjTpKu' 'sha384-bgmT70Gk0Hi20OfKO6GOfReDL7l8vly2r32Asvlf2nus9QI5bjFK30z/T3sZR1GM' 'sha384-HYV2lYjancxZc/8uNgzoQcCuWBJ2f92zW0cu/GXWu18oCLGL4JxdMek/ENCxZ4TE' 'sha384-zuvuRwc3g7NcPXFBpSOZMZHW59pt4EtPzz+ghMjciB4yQTY8bUYBsZt9xou/V6gM' 'sha384-viQ6Yo6tR2yGQx7aVO/zfR8ic37W8+XmLij5LjNIWuRWTXroSh465ZuUjwBqnU77' 'sha384-bUemJiNSKu3htNvnffbpMFkIiTZ6KOWOG2HwX9LuY5AhVCgkZs8srhSGOERY7so1' 'sha384-CN0LCPmvzVVfP3V1AYWH4ETIyjGuGs/Q4gwlMqVwPd8u7W9k7P4kvg3nip7gOywD'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://baserow.io https://tee-metabase.osc-fr1.scalingo.io https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; default-src 'none';"
},
{
"id": "Permissions-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
+ {
+ "id": "Cross-Origin-Opener-Policy",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "same-origin"
+ },
+ {
+ "id": "Cross-Origin-Resource-Policy",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "same-origin"
+ },
{
"id": "X-XSS-Protection",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "0"
},
{
"id": "Access-Control-Allow-Origin",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "*"
},
+ {
+ "id": "Permissions-Policy",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
+ },
{
"id": "Referrer-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "no-referrer"
},
{
"id": "banner_reverseproxy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -63176,7 +64609,7 @@
},
{
"id": "heartbleed",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -63185,7 +64618,7 @@
},
{
"id": "CCS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -63194,7 +64627,7 @@
},
{
"id": "ticketbleed",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -63203,7 +64636,7 @@
},
{
"id": "ROBOT",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -63212,7 +64645,7 @@
},
{
"id": "secure_renego",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -63220,7 +64653,7 @@
},
{
"id": "secure_client_renego",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -63229,7 +64662,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -63238,7 +64671,7 @@
},
{
"id": "BREACH",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -63247,7 +64680,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -63256,14 +64689,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -63272,7 +64705,7 @@
},
{
"id": "FREAK",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -63281,7 +64714,7 @@
},
{
"id": "DROWN",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -63290,7 +64723,7 @@
},
{
"id": "DROWN_hint",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -63299,7 +64732,7 @@
},
{
"id": "LOGJAM",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -63308,7 +64741,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -63317,7 +64750,7 @@
},
{
"id": "BEAST",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -63326,7 +64759,7 @@
},
{
"id": "LUCKY13",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -63335,7 +64768,7 @@
},
{
"id": "winshock",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -63344,7 +64777,7 @@
},
{
"id": "RC4",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -63353,315 +64786,315 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "A+"
@@ -63873,7 +65306,7 @@
"ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "supported"
+ "finding": "not supported"
},
{
"id": "TLS_timestamp",
@@ -63994,6 +65427,13 @@
"severity": "OK",
"finding": "Ok via SAN and CN (SNI mandatory)"
},
+ {
+ "id": "cert_trust_wildcard",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "port": "443",
+ "severity": "LOW",
+ "finding": "trust is via wildcard"
+ },
{
"id": "cert_chain_of_trust",
"ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
@@ -64013,7 +65453,7 @@
"ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
- "finding": "88 >= 30 days"
+ "finding": "39 >= 30 days"
},
{
"id": "cert_notBefore",
@@ -64167,14 +65607,14 @@
"ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "0 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
"ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "1736652645"
+ "finding": "1740884956"
},
{
"id": "HSTS_time",
@@ -64244,7 +65684,7 @@
"ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
"port": "443",
"severity": "OK",
- "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://embed.typeform.com; script-src 'self' 'strict-dynamic' 'sha256-DOXMGNUTv1cK/f2ugjJL9ouZQi+vTAl7Y9rhuH51fvM=' 'sha384-JNI1bA6IzNVq58UvdOUB6pMkpXZn48uW44ge8HrEs88jKrfC9xCreFlUbyl6mApZ' 'sha384-oXrgKPMGCD5dAYLbcPnoVJn70gXa39MutE+u90OuysE5tDh5rI2v4yJYTdrT6Bnn'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://embed.typeform.com https://api.typeform.com https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://form.typeform.com; default-src 'none';"
+ "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; script-src 'self' 'strict-dynamic' 'sha256-QqQusovmjMmhZSsjn3BMrqkpqqTdM9XT+9whcq8zxzI=' 'sha384-f1YKi4fm4EzFoLnEJmQrOvhGHn/YUImUqrZlo+6En8UbpxESN3Tu3i3PtxQkMpTW' 'sha384-tGPNOjUSfzR7z3Wejs0zytxr1R8APKdd8V//6s/WI62/s+7cMQyO9h/ObT9S4Hy1' 'sha384-n53OgnVAGgq87usZQEB/aTF/dMaJx+G8nPAvyaHvD6p3iqx7H9gLAJwJvD/z7t0E' 'sha384-vCIfPh0nFBe9HT4JSU2SnSOrIquKLUh9ZeZeDrHKgxAtmBHWk7jpcfPxQgH8r9LH' 'sha384-ZyUH7uRYgWpkmhDvABP4g+arbFckxJr9qHT66z677rOz2IjTToF6AUgB9EoAQbeM' 'sha384-Dr+aX6V41ZjcXzKA7MO9kL8G8UiT0Xj7ftyjWs8O3jf1aYEAAwO5lDk1AjgCayEH' 'sha384-4PIvYbGUsVDJiQxNPidcuP7SE/xD53XrTI9p3og02elstD0NfCDwNropZ0ZYVbsb' 'sha384-pRpwQBksidtrEtoFqanwChEy2lTPIa+grk1BDM7i9PittRcnToWyHQ0s9sEMT+yt' 'sha384-eC847ZokYzLwMLX5nKfoFIHEbir7z998hzKsXpjRG2+hFZBSQ64rFcYmARbg2kEB' 'sha384-76dpjAYPgNgZR+2TgSV5LSpE1KuLS2+OFArFRgSbXRlqX+qttpnyI0TagD2TzM5P' 'sha384-8ZiMjM0xbZrW6L7ZunPM6/cS1+obYwAU4uQ4N1zU+Uj8WMRGlRglyA/qCQjlAf4k' 'sha384-cNTwmRieyFCapvJD4vtMdOd7gYdyzKKBrfRhmI/tOj1l8X3Ynk6KtoBtVB4SxP23' 'sha384-tGsnqnMypBMJ0pUZJJVdMh/q58nVzYxR9XET7ei0HYb1aiRZsgWIMm2Zlrl0hTZw' 'sha384-jhvJxYvt0TU3Vv9LakFoLeto8yWqLyXD5j5iEUhlpFAOWZlGRd+gsqKS0i954nXV' 'sha384-CLNQvTudURZ0mHBYjwFh5WxreaDe7MM5/Er9O67xA+Bt4NU3iPvS5A9OgDU9czFr' 'sha384-JqkTz427LEhl6pIxOdMtWHu+yKQQ1hh9DOSQZTIPHUiWVLMFHT7LcrSit0zX7k6s' 'sha384-MtF6RYgUgmMJx65mUrhkBhn57C299x4MS/Ivs2bOR2GFLCuC024sH3zmoBtFCUHU' 'sha384-Ofp8IJJYwpBL48vTMvxShnM/oMDmCEpe7KD474hA7XhMvF3GlqBXgc6Tq0rfwObH' 'sha384-bbHoQCD2QuRVxTbSpUDGG18XKiOrq4uaIRCj/mYMHyOJ3yYsKcl4EOzwDrjy0B+b' 'sha384-8eC0I0N0E7YC+0/TyqGd+lUIiFqTbn0GPgr5QOjTMSqVyEpRWEjoCvmEQ9UJmFc6' 'sha384-gtmhFKBbmP9SwOtOZPc2jK8ImcYGgtPsqz8yJVAR60Hw6a6JWh8LadwlTshn1Gui' 'sha384-UQXKKvgm9nPgYB4m069DBmffczTYQ3tT9TL22wwPqfOHAelhw430djzZzJ3eoADd' 'sha384-NFJWrxAeAr+MRweEwsOstEyEkEdV2X5WxHld4P189naiScrTrGEJBZimLXtjTpKu' 'sha384-bgmT70Gk0Hi20OfKO6GOfReDL7l8vly2r32Asvlf2nus9QI5bjFK30z/T3sZR1GM' 'sha384-HYV2lYjancxZc/8uNgzoQcCuWBJ2f92zW0cu/GXWu18oCLGL4JxdMek/ENCxZ4TE' 'sha384-zuvuRwc3g7NcPXFBpSOZMZHW59pt4EtPzz+ghMjciB4yQTY8bUYBsZt9xou/V6gM' 'sha384-viQ6Yo6tR2yGQx7aVO/zfR8ic37W8+XmLij5LjNIWuRWTXroSh465ZuUjwBqnU77' 'sha384-bUemJiNSKu3htNvnffbpMFkIiTZ6KOWOG2HwX9LuY5AhVCgkZs8srhSGOERY7so1' 'sha384-CN0LCPmvzVVfP3V1AYWH4ETIyjGuGs/Q4gwlMqVwPd8u7W9k7P4kvg3nip7gOywD'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://baserow.io https://tee-metabase.osc-fr1.scalingo.io https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; default-src 'none';"
},
{
"id": "Permissions-Policy",
@@ -64253,6 +65693,20 @@
"severity": "OK",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
+ {
+ "id": "Cross-Origin-Opener-Policy",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "same-origin"
+ },
+ {
+ "id": "Cross-Origin-Resource-Policy",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "same-origin"
+ },
{
"id": "X-XSS-Protection",
"ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
@@ -64267,6 +65721,13 @@
"severity": "INFO",
"finding": "*"
},
+ {
+ "id": "Permissions-Policy",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
+ },
{
"id": "Referrer-Policy",
"ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120",
@@ -64981,7 +66442,7 @@
"ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "not supported"
+ "finding": "supported"
},
{
"id": "TLS_timestamp",
@@ -65102,6 +66563,13 @@
"severity": "OK",
"finding": "Ok via SAN and CN (SNI mandatory)"
},
+ {
+ "id": "cert_trust_wildcard",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "port": "443",
+ "severity": "LOW",
+ "finding": "trust is via wildcard"
+ },
{
"id": "cert_chain_of_trust",
"ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
@@ -65121,7 +66589,7 @@
"ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
- "finding": "88 >= 30 days"
+ "finding": "39 >= 30 days"
},
{
"id": "cert_notBefore",
@@ -65275,14 +66743,14 @@
"ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "-1 seconds from localtime"
+ "finding": "0 seconds from localtime"
},
{
"id": "HTTP_headerTime",
"ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "1736652744"
+ "finding": "1740885012"
},
{
"id": "HSTS_time",
@@ -65352,7 +66820,7 @@
"ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
"port": "443",
"severity": "OK",
- "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://embed.typeform.com; script-src 'self' 'strict-dynamic' 'sha256-DOXMGNUTv1cK/f2ugjJL9ouZQi+vTAl7Y9rhuH51fvM=' 'sha384-JNI1bA6IzNVq58UvdOUB6pMkpXZn48uW44ge8HrEs88jKrfC9xCreFlUbyl6mApZ' 'sha384-oXrgKPMGCD5dAYLbcPnoVJn70gXa39MutE+u90OuysE5tDh5rI2v4yJYTdrT6Bnn'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://embed.typeform.com https://api.typeform.com https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://form.typeform.com; default-src 'none';"
+ "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; script-src 'self' 'strict-dynamic' 'sha256-QqQusovmjMmhZSsjn3BMrqkpqqTdM9XT+9whcq8zxzI=' 'sha384-f1YKi4fm4EzFoLnEJmQrOvhGHn/YUImUqrZlo+6En8UbpxESN3Tu3i3PtxQkMpTW' 'sha384-tGPNOjUSfzR7z3Wejs0zytxr1R8APKdd8V//6s/WI62/s+7cMQyO9h/ObT9S4Hy1' 'sha384-n53OgnVAGgq87usZQEB/aTF/dMaJx+G8nPAvyaHvD6p3iqx7H9gLAJwJvD/z7t0E' 'sha384-vCIfPh0nFBe9HT4JSU2SnSOrIquKLUh9ZeZeDrHKgxAtmBHWk7jpcfPxQgH8r9LH' 'sha384-ZyUH7uRYgWpkmhDvABP4g+arbFckxJr9qHT66z677rOz2IjTToF6AUgB9EoAQbeM' 'sha384-Dr+aX6V41ZjcXzKA7MO9kL8G8UiT0Xj7ftyjWs8O3jf1aYEAAwO5lDk1AjgCayEH' 'sha384-4PIvYbGUsVDJiQxNPidcuP7SE/xD53XrTI9p3og02elstD0NfCDwNropZ0ZYVbsb' 'sha384-pRpwQBksidtrEtoFqanwChEy2lTPIa+grk1BDM7i9PittRcnToWyHQ0s9sEMT+yt' 'sha384-eC847ZokYzLwMLX5nKfoFIHEbir7z998hzKsXpjRG2+hFZBSQ64rFcYmARbg2kEB' 'sha384-76dpjAYPgNgZR+2TgSV5LSpE1KuLS2+OFArFRgSbXRlqX+qttpnyI0TagD2TzM5P' 'sha384-8ZiMjM0xbZrW6L7ZunPM6/cS1+obYwAU4uQ4N1zU+Uj8WMRGlRglyA/qCQjlAf4k' 'sha384-cNTwmRieyFCapvJD4vtMdOd7gYdyzKKBrfRhmI/tOj1l8X3Ynk6KtoBtVB4SxP23' 'sha384-tGsnqnMypBMJ0pUZJJVdMh/q58nVzYxR9XET7ei0HYb1aiRZsgWIMm2Zlrl0hTZw' 'sha384-jhvJxYvt0TU3Vv9LakFoLeto8yWqLyXD5j5iEUhlpFAOWZlGRd+gsqKS0i954nXV' 'sha384-CLNQvTudURZ0mHBYjwFh5WxreaDe7MM5/Er9O67xA+Bt4NU3iPvS5A9OgDU9czFr' 'sha384-JqkTz427LEhl6pIxOdMtWHu+yKQQ1hh9DOSQZTIPHUiWVLMFHT7LcrSit0zX7k6s' 'sha384-MtF6RYgUgmMJx65mUrhkBhn57C299x4MS/Ivs2bOR2GFLCuC024sH3zmoBtFCUHU' 'sha384-Ofp8IJJYwpBL48vTMvxShnM/oMDmCEpe7KD474hA7XhMvF3GlqBXgc6Tq0rfwObH' 'sha384-bbHoQCD2QuRVxTbSpUDGG18XKiOrq4uaIRCj/mYMHyOJ3yYsKcl4EOzwDrjy0B+b' 'sha384-8eC0I0N0E7YC+0/TyqGd+lUIiFqTbn0GPgr5QOjTMSqVyEpRWEjoCvmEQ9UJmFc6' 'sha384-gtmhFKBbmP9SwOtOZPc2jK8ImcYGgtPsqz8yJVAR60Hw6a6JWh8LadwlTshn1Gui' 'sha384-UQXKKvgm9nPgYB4m069DBmffczTYQ3tT9TL22wwPqfOHAelhw430djzZzJ3eoADd' 'sha384-NFJWrxAeAr+MRweEwsOstEyEkEdV2X5WxHld4P189naiScrTrGEJBZimLXtjTpKu' 'sha384-bgmT70Gk0Hi20OfKO6GOfReDL7l8vly2r32Asvlf2nus9QI5bjFK30z/T3sZR1GM' 'sha384-HYV2lYjancxZc/8uNgzoQcCuWBJ2f92zW0cu/GXWu18oCLGL4JxdMek/ENCxZ4TE' 'sha384-zuvuRwc3g7NcPXFBpSOZMZHW59pt4EtPzz+ghMjciB4yQTY8bUYBsZt9xou/V6gM' 'sha384-viQ6Yo6tR2yGQx7aVO/zfR8ic37W8+XmLij5LjNIWuRWTXroSh465ZuUjwBqnU77' 'sha384-bUemJiNSKu3htNvnffbpMFkIiTZ6KOWOG2HwX9LuY5AhVCgkZs8srhSGOERY7so1' 'sha384-CN0LCPmvzVVfP3V1AYWH4ETIyjGuGs/Q4gwlMqVwPd8u7W9k7P4kvg3nip7gOywD'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://baserow.io https://tee-metabase.osc-fr1.scalingo.io https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; default-src 'none';"
},
{
"id": "Permissions-Policy",
@@ -65361,6 +66829,20 @@
"severity": "OK",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
+ {
+ "id": "Cross-Origin-Opener-Policy",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "same-origin"
+ },
+ {
+ "id": "Cross-Origin-Resource-Policy",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "same-origin"
+ },
{
"id": "X-XSS-Protection",
"ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
@@ -65375,6 +66857,13 @@
"severity": "INFO",
"finding": "*"
},
+ {
+ "id": "Permissions-Policy",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
+ },
{
"id": "Referrer-Policy",
"ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90",
@@ -65884,77 +67373,77 @@
},
{
"id": "service",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -65962,7 +67451,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -65970,7 +67459,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -65978,7 +67467,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -65986,7 +67475,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -65994,7 +67483,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -66002,497 +67491,525 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "39 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2025-01-10 09:00"
},
{
"id": "cert_notAfter",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "2025-04-10 09:00"
},
{
"id": "cert_extlifeSpan",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "http://r10.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "R10 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "R10 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "0 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "1736652844"
+ "finding": "1740885065"
},
{
"id": "HSTS_time",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "180 days (=15552000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "includes subdomains"
},
{
"id": "HSTS_preload",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "SAMEORIGIN"
},
{
"id": "X-Content-Type-Options",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
- "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://embed.typeform.com; script-src 'self' 'strict-dynamic' 'sha256-DOXMGNUTv1cK/f2ugjJL9ouZQi+vTAl7Y9rhuH51fvM=' 'sha384-JNI1bA6IzNVq58UvdOUB6pMkpXZn48uW44ge8HrEs88jKrfC9xCreFlUbyl6mApZ' 'sha384-oXrgKPMGCD5dAYLbcPnoVJn70gXa39MutE+u90OuysE5tDh5rI2v4yJYTdrT6Bnn'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://embed.typeform.com https://api.typeform.com https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://form.typeform.com; default-src 'none';"
+ "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; script-src 'self' 'strict-dynamic' 'sha256-QqQusovmjMmhZSsjn3BMrqkpqqTdM9XT+9whcq8zxzI=' 'sha384-f1YKi4fm4EzFoLnEJmQrOvhGHn/YUImUqrZlo+6En8UbpxESN3Tu3i3PtxQkMpTW' 'sha384-tGPNOjUSfzR7z3Wejs0zytxr1R8APKdd8V//6s/WI62/s+7cMQyO9h/ObT9S4Hy1' 'sha384-n53OgnVAGgq87usZQEB/aTF/dMaJx+G8nPAvyaHvD6p3iqx7H9gLAJwJvD/z7t0E' 'sha384-vCIfPh0nFBe9HT4JSU2SnSOrIquKLUh9ZeZeDrHKgxAtmBHWk7jpcfPxQgH8r9LH' 'sha384-ZyUH7uRYgWpkmhDvABP4g+arbFckxJr9qHT66z677rOz2IjTToF6AUgB9EoAQbeM' 'sha384-Dr+aX6V41ZjcXzKA7MO9kL8G8UiT0Xj7ftyjWs8O3jf1aYEAAwO5lDk1AjgCayEH' 'sha384-4PIvYbGUsVDJiQxNPidcuP7SE/xD53XrTI9p3og02elstD0NfCDwNropZ0ZYVbsb' 'sha384-pRpwQBksidtrEtoFqanwChEy2lTPIa+grk1BDM7i9PittRcnToWyHQ0s9sEMT+yt' 'sha384-eC847ZokYzLwMLX5nKfoFIHEbir7z998hzKsXpjRG2+hFZBSQ64rFcYmARbg2kEB' 'sha384-76dpjAYPgNgZR+2TgSV5LSpE1KuLS2+OFArFRgSbXRlqX+qttpnyI0TagD2TzM5P' 'sha384-8ZiMjM0xbZrW6L7ZunPM6/cS1+obYwAU4uQ4N1zU+Uj8WMRGlRglyA/qCQjlAf4k' 'sha384-cNTwmRieyFCapvJD4vtMdOd7gYdyzKKBrfRhmI/tOj1l8X3Ynk6KtoBtVB4SxP23' 'sha384-tGsnqnMypBMJ0pUZJJVdMh/q58nVzYxR9XET7ei0HYb1aiRZsgWIMm2Zlrl0hTZw' 'sha384-jhvJxYvt0TU3Vv9LakFoLeto8yWqLyXD5j5iEUhlpFAOWZlGRd+gsqKS0i954nXV' 'sha384-CLNQvTudURZ0mHBYjwFh5WxreaDe7MM5/Er9O67xA+Bt4NU3iPvS5A9OgDU9czFr' 'sha384-JqkTz427LEhl6pIxOdMtWHu+yKQQ1hh9DOSQZTIPHUiWVLMFHT7LcrSit0zX7k6s' 'sha384-MtF6RYgUgmMJx65mUrhkBhn57C299x4MS/Ivs2bOR2GFLCuC024sH3zmoBtFCUHU' 'sha384-Ofp8IJJYwpBL48vTMvxShnM/oMDmCEpe7KD474hA7XhMvF3GlqBXgc6Tq0rfwObH' 'sha384-bbHoQCD2QuRVxTbSpUDGG18XKiOrq4uaIRCj/mYMHyOJ3yYsKcl4EOzwDrjy0B+b' 'sha384-8eC0I0N0E7YC+0/TyqGd+lUIiFqTbn0GPgr5QOjTMSqVyEpRWEjoCvmEQ9UJmFc6' 'sha384-gtmhFKBbmP9SwOtOZPc2jK8ImcYGgtPsqz8yJVAR60Hw6a6JWh8LadwlTshn1Gui' 'sha384-UQXKKvgm9nPgYB4m069DBmffczTYQ3tT9TL22wwPqfOHAelhw430djzZzJ3eoADd' 'sha384-NFJWrxAeAr+MRweEwsOstEyEkEdV2X5WxHld4P189naiScrTrGEJBZimLXtjTpKu' 'sha384-bgmT70Gk0Hi20OfKO6GOfReDL7l8vly2r32Asvlf2nus9QI5bjFK30z/T3sZR1GM' 'sha384-HYV2lYjancxZc/8uNgzoQcCuWBJ2f92zW0cu/GXWu18oCLGL4JxdMek/ENCxZ4TE' 'sha384-zuvuRwc3g7NcPXFBpSOZMZHW59pt4EtPzz+ghMjciB4yQTY8bUYBsZt9xou/V6gM' 'sha384-viQ6Yo6tR2yGQx7aVO/zfR8ic37W8+XmLij5LjNIWuRWTXroSh465ZuUjwBqnU77' 'sha384-bUemJiNSKu3htNvnffbpMFkIiTZ6KOWOG2HwX9LuY5AhVCgkZs8srhSGOERY7so1' 'sha384-CN0LCPmvzVVfP3V1AYWH4ETIyjGuGs/Q4gwlMqVwPd8u7W9k7P4kvg3nip7gOywD'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://baserow.io https://tee-metabase.osc-fr1.scalingo.io https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; default-src 'none';"
},
{
"id": "Permissions-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
+ {
+ "id": "Cross-Origin-Opener-Policy",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "same-origin"
+ },
+ {
+ "id": "Cross-Origin-Resource-Policy",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "same-origin"
+ },
{
"id": "X-XSS-Protection",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "0"
},
{
"id": "Access-Control-Allow-Origin",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "*"
},
+ {
+ "id": "Permissions-Policy",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
+ "port": "443",
+ "severity": "INFO",
+ "finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
+ },
{
"id": "Referrer-Policy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "no-referrer"
},
{
"id": "banner_reverseproxy",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -66500,7 +68017,7 @@
},
{
"id": "heartbleed",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -66509,7 +68026,7 @@
},
{
"id": "CCS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -66518,7 +68035,7 @@
},
{
"id": "ticketbleed",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -66527,7 +68044,7 @@
},
{
"id": "ROBOT",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -66536,7 +68053,7 @@
},
{
"id": "secure_renego",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -66544,7 +68061,7 @@
},
{
"id": "secure_client_renego",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -66553,7 +68070,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -66562,7 +68079,7 @@
},
{
"id": "BREACH",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -66571,7 +68088,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -66580,14 +68097,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -66596,7 +68113,7 @@
},
{
"id": "FREAK",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -66605,7 +68122,7 @@
},
{
"id": "DROWN",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -66614,7 +68131,7 @@
},
{
"id": "DROWN_hint",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -66623,7 +68140,7 @@
},
{
"id": "LOGJAM",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -66632,7 +68149,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -66641,7 +68158,7 @@
},
{
"id": "BEAST",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -66650,7 +68167,7 @@
},
{
"id": "LUCKY13",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -66659,7 +68176,7 @@
},
{
"id": "winshock",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -66668,7 +68185,7 @@
},
{
"id": "RC4",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -66677,325 +68194,325 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "scanTime",
- "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30",
+ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "402"
+ "finding": "220"
}
],
"thirdparties": {
@@ -67011,23 +68528,6 @@
}
},
"technologies": [
- {
- "slug": "hsts",
- "name": "HSTS",
- "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.",
- "confidence": 100,
- "version": null,
- "icon": "default.svg",
- "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1",
- "cpe": null,
- "categories": [
- {
- "id": 16,
- "slug": "security",
- "name": "Security"
- }
- ]
- },
{
"slug": "ovhcloud",
"name": "OVHcloud",
@@ -67049,13 +68549,30 @@
"name": "Hosting"
}
]
+ },
+ {
+ "slug": "hsts",
+ "name": "HSTS",
+ "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.",
+ "confidence": 100,
+ "version": null,
+ "icon": "default.svg",
+ "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1",
+ "cpe": null,
+ "categories": [
+ {
+ "id": 16,
+ "slug": "security",
+ "name": "Security"
+ }
+ ]
}
]
},
"zap": {
"@programName": "ZAP",
"@version": "2.16.0",
- "@generated": "Sun, 12 Jan 2025 03:23:34",
+ "@generated": "Sun, 2 Mar 2025 03:06:37",
"site": [
{
"@name": "https://mission-transition-ecologique.beta.gouv.fr",
@@ -67098,6 +68615,13 @@
"riskdesc": "Medium (High)",
"desc": "The integrity attribute is missing on a script or link tag served by an external server. The integrity tag prevents an attacker who have gained access to this server from injecting a malicious content.
"
},
+ {
+ "name": "Insufficient Site Isolation Against Spectre Vulnerability",
+ "riskcode": "1",
+ "confidence": "2",
+ "riskdesc": "Low (Medium)",
+ "desc": "Cross-Origin-Embedder-Policy header is a response header that prevents a document from loading any cross-origin resources that don't explicitly grant the document permission (using CORP or CORS).
"
+ },
{
"name": "Permissions Policy Header Not Set",
"riskcode": "1",
@@ -67133,6 +68657,13 @@
"riskdesc": "Informational (Medium)",
"desc": "The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.
"
},
+ {
+ "name": "Non-Storable Content",
+ "riskcode": "0",
+ "confidence": "2",
+ "riskdesc": "Informational (Medium)",
+ "desc": "The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.
"
+ },
{
"name": "Re-examine Cache-control Directives",
"riskcode": "0",
@@ -67182,59 +68713,55 @@
},
"nuclei": [
{
- "template": "dns/mx-fingerprint.yaml",
- "template-url": "https://templates.nuclei.sh/public/mx-fingerprint",
- "template-id": "mx-fingerprint",
- "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml",
+ "template": "dns/spf-record-detect.yaml",
+ "template-url": "https://templates.nuclei.sh/public/spf-record-detect",
+ "template-id": "spf-record-detect",
+ "template-path": "/home/runner/nuclei-templates/dns/spf-record-detect.yaml",
"info": {
- "name": "MX Record Detection",
+ "name": "SPF Record - Detection",
"author": [
- "pdteam"
+ "rxerium"
],
"tags": [
"dns",
- "mx"
+ "spf"
],
- "description": "An MX record was detected. MX records direct emails to a mail exchange server.",
+ "description": "An SPF TXT record was detected\n",
"reference": [
- "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/",
- "https://mxtoolbox.com/"
+ "https://www.mimecast.com/content/how-to-create-an-spf-txt-record"
],
"severity": "info",
"metadata": {
"max-request": 1
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ]
}
},
"type": "dns",
"host": "mission-transition-ecologique.beta.gouv.fr.",
"matched-at": "mission-transition-ecologique.beta.gouv.fr",
"extracted-results": [
- "1 SMTP.GOOGLE.COM."
+ "v=spf1 include:_spf.google.com -all\""
],
- "timestamp": "2025-01-12T03:13:13.75429426Z",
+ "timestamp": "2025-03-02T03:12:31.06540498Z",
"matcher-status": true
},
{
- "template": "dns/nameserver-fingerprint.yaml",
- "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint",
- "template-id": "nameserver-fingerprint",
- "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml",
+ "template": "dns/txt-fingerprint.yaml",
+ "template-url": "https://templates.nuclei.sh/public/txt-fingerprint",
+ "template-id": "txt-fingerprint",
+ "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml",
"info": {
- "name": "NS Record Detection",
+ "name": "DNS TXT Record Detected",
"author": [
"pdteam"
],
"tags": [
"dns",
- "ns"
+ "txt"
+ ],
+ "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.",
+ "reference": [
+ "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/"
],
- "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.",
"severity": "info",
"metadata": {
"max-request": 1
@@ -67250,10 +68777,12 @@
"host": "mission-transition-ecologique.beta.gouv.fr.",
"matched-at": "mission-transition-ecologique.beta.gouv.fr",
"extracted-results": [
- "ns102.ovh.net.",
- "dns102.ovh.net."
+ "\"v=spf1 include:_spf.google.com -all\"",
+ "\"google-site-verification=cYyloPg1rNO63Sj-DrmjqWqY_2Ml3mDLKagn2WELMYM\"",
+ "\"google-site-verification=3AfPWw9xL2RdWxuf5CJ0NZlmGUEEGOFDEu9Kg7IM6Cw\"",
+ "\"brevo-code:6109b304ca0ab51bb666afa10c8b5073\""
],
- "timestamp": "2025-01-12T03:13:14.779235323Z",
+ "timestamp": "2025-03-02T03:12:31.065529673Z",
"matcher-status": true
},
{
@@ -67288,58 +68817,63 @@
"type": "dns",
"host": "mission-transition-ecologique.beta.gouv.fr.",
"matched-at": "mission-transition-ecologique.beta.gouv.fr",
- "timestamp": "2025-01-12T03:13:14.780153665Z",
+ "timestamp": "2025-03-02T03:12:31.139734948Z",
"matcher-status": true
},
{
- "template": "dns/spf-record-detect.yaml",
- "template-url": "https://templates.nuclei.sh/public/spf-record-detect",
- "template-id": "spf-record-detect",
- "template-path": "/home/runner/nuclei-templates/dns/spf-record-detect.yaml",
+ "template": "dns/nameserver-fingerprint.yaml",
+ "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint",
+ "template-id": "nameserver-fingerprint",
+ "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml",
"info": {
- "name": "SPF Record - Detection",
+ "name": "NS Record Detection",
"author": [
- "rxerium"
+ "pdteam"
],
"tags": [
"dns",
- "spf"
- ],
- "description": "An SPF TXT record was detected\n",
- "reference": [
- "https://www.mimecast.com/content/how-to-create-an-spf-txt-record"
+ "ns"
],
+ "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.",
"severity": "info",
"metadata": {
"max-request": 1
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ]
}
},
"type": "dns",
"host": "mission-transition-ecologique.beta.gouv.fr.",
"matched-at": "mission-transition-ecologique.beta.gouv.fr",
"extracted-results": [
- "v=spf1 include:_spf.google.com -all\""
+ "ns102.ovh.net.",
+ "dns102.ovh.net."
],
- "timestamp": "2025-01-12T03:13:14.900289566Z",
+ "timestamp": "2025-03-02T03:12:31.9793926Z",
"matcher-status": true
},
{
- "template": "dns/txt-fingerprint.yaml",
- "template-url": "https://templates.nuclei.sh/public/txt-fingerprint",
- "template-id": "txt-fingerprint",
- "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml",
+ "template": "dns/mx-fingerprint.yaml",
+ "template-url": "https://templates.nuclei.sh/public/mx-fingerprint",
+ "template-id": "mx-fingerprint",
+ "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml",
"info": {
- "name": "DNS TXT Record Detected",
+ "name": "MX Record Detection",
"author": [
"pdteam"
],
"tags": [
"dns",
- "txt"
+ "mx"
],
- "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.",
+ "description": "An MX record was detected. MX records direct emails to a mail exchange server.",
"reference": [
- "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/"
+ "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/",
+ "https://mxtoolbox.com/"
],
"severity": "info",
"metadata": {
@@ -67356,12 +68890,9 @@
"host": "mission-transition-ecologique.beta.gouv.fr.",
"matched-at": "mission-transition-ecologique.beta.gouv.fr",
"extracted-results": [
- "\"google-site-verification=3AfPWw9xL2RdWxuf5CJ0NZlmGUEEGOFDEu9Kg7IM6Cw\"",
- "\"google-site-verification=cYyloPg1rNO63Sj-DrmjqWqY_2Ml3mDLKagn2WELMYM\"",
- "\"v=spf1 include:_spf.google.com -all\"",
- "\"brevo-code:6109b304ca0ab51bb666afa10c8b5073\""
+ "1 SMTP.GOOGLE.COM."
],
- "timestamp": "2025-01-12T03:13:14.900399851Z",
+ "timestamp": "2025-03-02T03:12:32.143348402Z",
"matcher-status": true
},
{
@@ -67393,12 +68924,12 @@
"max-request": 1
}
},
- "matcher-name": "content-security-policy",
+ "matcher-name": "clear-site-data",
"type": "http",
"host": "https://mission-transition-ecologique.beta.gouv.fr/api/health",
"matched-at": "https://mission-transition-ecologique.beta.gouv.fr/api/health",
- "ip": "109.232.233.130",
- "timestamp": "2025-01-12T03:14:39.782828605Z",
+ "ip": "148.253.75.120",
+ "timestamp": "2025-03-02T03:13:23.837927768Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr/api/health'",
"matcher-status": true
},
@@ -67431,12 +68962,12 @@
"max-request": 1
}
},
- "matcher-name": "permissions-policy",
+ "matcher-name": "cross-origin-embedder-policy",
"type": "http",
"host": "https://mission-transition-ecologique.beta.gouv.fr/api/health",
"matched-at": "https://mission-transition-ecologique.beta.gouv.fr/api/health",
- "ip": "109.232.233.130",
- "timestamp": "2025-01-12T03:14:39.78286892Z",
+ "ip": "148.253.75.120",
+ "timestamp": "2025-03-02T03:13:23.837977431Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr/api/health'",
"matcher-status": true
},
@@ -67469,12 +69000,12 @@
"max-request": 1
}
},
- "matcher-name": "clear-site-data",
+ "matcher-name": "cross-origin-opener-policy",
"type": "http",
"host": "https://mission-transition-ecologique.beta.gouv.fr/api/health",
"matched-at": "https://mission-transition-ecologique.beta.gouv.fr/api/health",
- "ip": "109.232.233.130",
- "timestamp": "2025-01-12T03:14:39.782886161Z",
+ "ip": "148.253.75.120",
+ "timestamp": "2025-03-02T03:13:23.83799335Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr/api/health'",
"matcher-status": true
},
@@ -67507,12 +69038,12 @@
"max-request": 1
}
},
- "matcher-name": "cross-origin-embedder-policy",
+ "matcher-name": "cross-origin-resource-policy",
"type": "http",
"host": "https://mission-transition-ecologique.beta.gouv.fr/api/health",
"matched-at": "https://mission-transition-ecologique.beta.gouv.fr/api/health",
- "ip": "109.232.233.130",
- "timestamp": "2025-01-12T03:14:39.782900619Z",
+ "ip": "148.253.75.120",
+ "timestamp": "2025-03-02T03:13:23.838006615Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr/api/health'",
"matcher-status": true
},
@@ -67545,12 +69076,12 @@
"max-request": 1
}
},
- "matcher-name": "cross-origin-opener-policy",
+ "matcher-name": "content-security-policy",
"type": "http",
"host": "https://mission-transition-ecologique.beta.gouv.fr/api/health",
"matched-at": "https://mission-transition-ecologique.beta.gouv.fr/api/health",
- "ip": "109.232.233.130",
- "timestamp": "2025-01-12T03:14:39.782925064Z",
+ "ip": "148.253.75.120",
+ "timestamp": "2025-03-02T03:13:23.838021042Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr/api/health'",
"matcher-status": true
},
@@ -67583,12 +69114,12 @@
"max-request": 1
}
},
- "matcher-name": "cross-origin-resource-policy",
+ "matcher-name": "permissions-policy",
"type": "http",
"host": "https://mission-transition-ecologique.beta.gouv.fr/api/health",
"matched-at": "https://mission-transition-ecologique.beta.gouv.fr/api/health",
- "ip": "109.232.233.130",
- "timestamp": "2025-01-12T03:14:39.782948417Z",
+ "ip": "148.253.75.120",
+ "timestamp": "2025-03-02T03:13:23.838035599Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr/api/health'",
"matcher-status": true
},
@@ -67618,8 +69149,8 @@
"extracted-results": [
"Let's Encrypt"
],
- "ip": "109.232.233.130",
- "timestamp": "2025-01-12T03:21:21.21748417Z",
+ "ip": "148.253.75.120",
+ "timestamp": "2025-03-02T03:19:31.961543618Z",
"matcher-status": true
},
{
@@ -67648,8 +69179,8 @@
"extracted-results": [
"mission-transition-ecologique.beta.gouv.fr"
],
- "ip": "109.232.233.130",
- "timestamp": "2025-01-12T03:21:21.217621595Z",
+ "ip": "148.253.75.120",
+ "timestamp": "2025-03-02T03:19:31.96166305Z",
"matcher-status": true
},
{
@@ -67679,8 +69210,8 @@
"extracted-results": [
"tls12"
],
- "ip": "109.232.233.130",
- "timestamp": "2025-01-12T03:21:23.851239557Z",
+ "ip": "148.253.75.120",
+ "timestamp": "2025-03-02T03:19:34.137015825Z",
"matcher-status": true
},
{
@@ -67710,8 +69241,8 @@
"extracted-results": [
"tls13"
],
- "ip": "109.232.233.130",
- "timestamp": "2025-01-12T03:21:24.164377038Z",
+ "ip": "148.253.75.120",
+ "timestamp": "2025-03-02T03:19:34.335574363Z",
"matcher-status": true
}
],
@@ -67872,7 +69403,7 @@
],
"screenshot": true,
"stats": {
- "grade": "F",
+ "grade": "A",
"url": "https://mission-transition-ecologique.beta.gouv.fr",
"uri": "stats"
},
@@ -67969,13 +69500,36 @@
}
}
},
- "ecoindex": null,
+ "ecoindex": [
+ {
+ "width": 1920,
+ "height": 1080,
+ "url": "https://mission-transition-ecologique.beta.gouv.fr/api/health",
+ "size": 8.214,
+ "nodes": 3,
+ "requests": 2,
+ "grade": "A",
+ "score": 97,
+ "ges": 1.06,
+ "water": 1.59,
+ "ecoindex_version": "5.4.2",
+ "date": "2025-03-02 03:05:06.869986",
+ "page_type": null
+ }
+ ],
"sonarcloud": [],
"dsfr": {
"detected": false
},
"summary": {
"404": "A+",
+ "apdex": 1,
+ "apdexGrade": "A",
+ "uptime": 100,
+ "uptimeGrade": "A",
+ "nmapGrade": "A",
+ "nmapOpenPortsCount": 2,
+ "nmapOpenPortsGrade": "A",
"dependabotGrade": "A",
"dependabotCount": 0,
"testsslExpireSoon": false,
@@ -67985,7 +69539,7 @@
"cookiesCount": null,
"trackersGrade": null,
"trackersCount": null,
- "zapCount": 6,
+ "zapCount": 7,
"zapGrade": "D",
"lighthouse_performance": 0.99,
"lighthouse_performanceGrade": "A",
@@ -67997,12 +69551,13 @@
"lighthouse_seoGrade": "C",
"lighthouse_pwa": 0,
"lighthouse_pwaGrade": "F",
- "statsGrade": "F",
+ "statsGrade": "A",
"githubRepositoryGrade": "A",
"budgetPageGrade": "A",
"declaration-a11y": "F",
"declaration-rgpd-ml": "F",
"declaration-rgpd-pc": "F",
+ "ecoindexGrade": "A",
"dsfrGrade": "F"
}
},
@@ -68123,245 +69678,265 @@
"/annuaire"
],
"http": {
- "url": "https://preprod.mission-transition-ecologique.incubateur.net",
- "algorithm_version": 3,
- "end_time": "Sun, 28 Apr 2024 02:06:35 GMT",
- "grade": "A+",
- "hidden": false,
- "likelihood_indicator": "LOW",
- "response_headers": {
- "Access-Control-Allow-Origin": "*",
- "Cache-Control": "no-cache",
- "Connection": "keep-alive",
- "Content-Encoding": "gzip",
- "Content-Security-Policy": "default-src 'none';base-uri 'self';form-action 'self';script-src 'self';script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr;style-src 'self' 'unsafe-inline';font-src 'self';img-src 'self' data:;object-src 'self';connect-src 'self' https://place-des-entreprises.beta.gouv.fr https://stats.beta.gouv.fr https://sentry.incubateur.net;worker-src 'self' blob:;frame-src 'self' https://place-des-entreprises.beta.gouv.fr;frame-ancestors 'self' https://place-des-entreprises.beta.gouv.fr;",
- "Content-Type": "text/html",
- "Date": "Sun, 28 Apr 2024 02:06:34 GMT",
- "Etag": "W/\"8c1-Jq/MRykrLM3nV+9o0ddKatKapT4\"",
- "Expect-CT": "default-src 'self' https://sentry.incubateur.net;report-uri https://sentry.incubateur.net/api/137/security/?sentry_key=caf416235f164b448d0ca6369f2053e5;",
- "Strict-Transport-Security": "max-age=31536000",
- "Transfer-Encoding": "chunked",
- "X-Content-Type-Options": "nosniff",
- "X-Frame-Options": "ALLOW-FROM https://place-des-entreprises.beta.gouv.fr",
- "X-Request-ID": "2a0665fa-bb55-469f-8f8c-77b1f1deffb0"
- },
- "scan_id": 50449258,
- "score": 105,
- "start_time": "Sun, 28 Apr 2024 02:06:33 GMT",
- "state": "FINISHED",
- "status_code": 200,
- "tests_failed": 0,
- "tests_passed": 11,
- "tests_quantity": 11,
- "details": {
+ "scan": {
+ "algorithmVersion": 4,
+ "grade": "A+",
+ "error": null,
+ "score": 115,
+ "statusCode": 200,
+ "testsFailed": 1,
+ "testsPassed": 9,
+ "testsQuantity": 10,
+ "responseHeaders": {
+ "date": "Sun, 02 Mar 2025 03:20:14 GMT",
+ "content-type": "text/html;charset=utf-8",
+ "transfer-encoding": "chunked",
+ "connection": "close",
+ "x-request-id": "f992bc4f-edd5-4dd7-b9b9-a183b86315bf",
+ "referrer-policy": "no-referrer",
+ "strict-transport-security": "max-age=15552000; includeSubDomains;",
+ "x-content-type-options": "nosniff",
+ "x-download-options": "noopen",
+ "x-frame-options": "SAMEORIGIN",
+ "x-permitted-cross-domain-policies": "none",
+ "x-xss-protection": "0",
+ "vary": "Accept-Encoding",
+ "etag": "W/\"1ea99-ghRvn5xaiJsibqVQFY6UgpXohBs\"",
+ "last-modified": "Fri, 28 Feb 2025 11:30:40 GMT",
+ "access-control-allow-origin": "*",
+ "x-robots-tag": "index, follow, max-image-preview:large, max-snippet:-1, max-video-preview:-1",
+ "cross-origin-resource-policy": "same-origin",
+ "cross-origin-opener-policy": "same-origin",
+ "content-security-policy": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; script-src 'self' 'strict-dynamic' 'unsafe-eval' 'sha256-/t6Zcidx62FnfGe+2DP12Vvkt1T7Yl6x+dlwhiDAWgQ=' 'sha384-rwII+5OLhn5giBOfgUXKaQeoIHBUgLB8ZJmHpgveAwRgoUgAtCiBKZdlALPKP5vy' 'sha384-XIqF7XSpJK1zCkB3lDnGS/GOoOvZH4NbPAxJawUjk9E+VJW4EaSLO2q6XlEcvP6v' 'sha384-kYqsaFuZG6YQhHcsNveNfzmiZcXliRtxAltA5KsWRa2XzR3d0aeFfPkumNjg63Ki' 'sha384-6hAIRaNU+xWknXNbT0vieunzI1kYKS0DXiAqz+21q69WvP2F2ARrFqEt5EIT+V4c' 'sha384-DqMIPt22vSKrcI9ZcUT+J3IdsRr34DE5kiVEKqbHtxt6VqUDO/RHHATViw+t+5+U' 'sha384-NYSPVWZpZD412cd95UdDUYH3SVkDCEDFsqzt4/rfn5Y/1IvOSMMcwkDINGe4a9v7' 'sha384-1gTEi4f77yYYO1nltaUKqcKrJU8ERsIcgvdXwgbJ7k1S/HKhOIBMq2N3AfmQcsC8' 'sha384-MAnr+5Q0UevRQx6xqYKukuW+qZK8Gir0LulFC0+TxFT4jiZC+s4gAjmKDdRAgL4b' 'sha384-atMbkiYvvnH9fyRyl1RgZNq1r18kAaJw9NCAQXYAPy5/lCGYjPD3/RCS4CDQtb0t' 'sha384-LTjrYwGYMdbQtT0nk/pP8GIw8xXvhX8IBXaG9ukh1pYVsUKC+8haLW0wob88FHEa' 'sha384-F2eUnhUrv7yPcliAR88+Pa8m/ZDLkErT2nWDdTjjYiu+H9Rd4gmK+ZpRq9zOpXQf' 'sha384-iF0xkyh7d/Uz3fPRuGMEVMD/en0P+C8rErKiprBFgiBknm00rktBg4fTn6nTak3F' 'sha384-wAJif8hBz87wY5lEKoovtNWjCs537f9H8BHcPbQ7RwiP+xujVapHt2t8SFuuZ9q4' 'sha384-bhhx/rNb23neBCFmzbzUjfRSyehB5Fes6P6WmdmmCP/Bx6iRNZh7Q+hLGd5UKQ9g' 'sha384-+FhlgdlIu1C0oaV9wzvmUZbstyYikhskuI3ZTmP20+cWg+UeFSFGYIt0nDAPQQa/' 'sha384-u7lz4nvHF73DZstM9pqP8aoLzD5ZXjrB1GIuNzYcRQ97dB0emufVw2ik2b0jgbwG' 'sha384-l7CZSTfDmwPrZdilGpKd5CoVaHs0tQQw3LEztEsUVyFShhC3uYymOyvdcRzQvQEa' 'sha384-kcHd3iitwwQiaCJw0iBI8xsx1MEqlJm+FwS+CY+D6tE8SvCBw/vfsH1uQnH2pt93' 'sha384-8MXl49Fx+iM14RFty7KibDlKd20HqQbJ6UPlJrEVLJc/E/OybvlDQ3lhlp27YKON' 'sha384-QxafWPkii1Epro3BW76GabNhxbD12DPGRgqhE+BTau52bWWV5bbc6Qh+0eAf03I1' 'sha384-3ZKNtHXmHyR4RDo9J8agELbc5FOyur8Z9cYOdepx66zfQhlQgrCP7ClIaQwHqg0g' 'sha384-4OpWySTWz3+kyfqxaKX3C0o6s+uUZtxTlLL6kOiQacTEsslsmm258/Io/tiu8A8O' 'sha384-O2xWppV4MwbML1xCyeerpYK3kp/SvwGRzTyuV9pjcYK5gAzfThpdIcvVftB6oHbi' 'sha384-xkPmSBjg87iAGMrIT09cgpVcSWpNP21cyHpk6ZR+xNsRvT7wk1xT1D2x63n4ZDk9' 'sha384-PXOkv+2ez83fauogp6fGnIGndkY4Gb1+WeIwBKiTImL0q6qak/qHNWN2U/ahW/fa' 'sha384-dHfBSS3GxcI/n2vUng1FBxZFUae5PpOuis9DAuNOws/MhHefq4Be75xgzCxzFEw4' 'sha384-3lQP3iyKmz977g9+uf77B3ATwxOuYSza4ZVT3iSZQxGhUZowLwdkHWZ2cYHbT0TZ' 'sha384-7lz86Fu2rPHm2DXIc+gXHvLt6HHKz6p/xQs+pbwpvqOoEZEE04ItZI0vzrNM0dA2' 'sha384-WCCZgpsjEaFTX5qltST2czg65ZYypTjCfD/wRPWnkqfOfQ2WQ7DR2HkSZnsoHrKK' 'sha384-OosHgkraVHM3f4Lln8jcA9q+ZoSZBcVeAh/xXFk8TQgEMc1Oy2Cyt3YeW5uIjRUG'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://baserow.io https://tee-metabase.osc-fr1.scalingo.io https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; default-src 'none';",
+ "origin-agent-cluster": "?1",
+ "x-dns-prefetch-control": "off",
+ "permissions-policy": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
+ }
+ },
+ "tests": {
"content-security-policy": {
"expectation": "csp-implemented-with-no-unsafe",
- "name": "content-security-policy",
- "output": {
- "data": {
- "base-uri": [
- "'self'"
- ],
- "connect-src": [
- "https://place-des-entreprises.beta.gouv.fr",
- "https://sentry.incubateur.net",
- "'self'",
- "https://stats.beta.gouv.fr"
- ],
- "default-src": [
- "'none'"
- ],
- "font-src": [
- "'self'"
- ],
- "form-action": [
- "'self'"
- ],
- "frame-ancestors": [
- "https://place-des-entreprises.beta.gouv.fr",
- "'self'"
- ],
- "frame-src": [
- "https://place-des-entreprises.beta.gouv.fr",
- "'self'"
- ],
- "img-src": [
- "data:",
- "'self'"
- ],
- "object-src": [
- "'self'"
- ],
- "script-src": [
- "'self'"
- ],
- "script-src-elem": [
- "https://stats.beta.gouv.fr",
- "'self'",
- "'unsafe-inline'"
- ],
- "style-src": [
- "'self'",
- "'unsafe-inline'"
- ],
- "worker-src": [
- "'self'",
- "blob:"
- ]
- },
- "http": true,
- "meta": false,
- "numPolicies": 1,
- "policy": {
- "antiClickjacking": true,
- "defaultNone": true,
- "insecureBaseUri": false,
- "insecureFormAction": false,
- "insecureSchemeActive": false,
- "insecureSchemePassive": false,
- "strictDynamic": false,
- "unsafeEval": false,
- "unsafeInline": false,
- "unsafeInlineStyle": true,
- "unsafeObjects": false
- }
- },
- "pass": true,
- "result": "csp-implemented-with-unsafe-inline-in-style-src-only",
- "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.",
- "score_modifier": 0
- },
- "contribute": {
- "expectation": "contribute-json-only-required-on-mozilla-properties",
- "name": "contribute",
- "output": {
- "data": null
+ "pass": false,
+ "result": "csp-implemented-with-unsafe-eval",
+ "scoreModifier": -10,
+ "data": {
+ "base-uri": [
+ "'self'"
+ ],
+ "font-src": [
+ "'self'"
+ ],
+ "form-action": [
+ "'self'"
+ ],
+ "frame-ancestors": [
+ "'self'"
+ ],
+ "img-src": [
+ "'self'",
+ "data:"
+ ],
+ "object-src": [
+ "'self'"
+ ],
+ "script-src-attr": [
+ "'none'"
+ ],
+ "style-src": [
+ "'self'",
+ "'unsafe-inline'",
+ "https://baserow.io",
+ "https://tee-metabase.osc-fr1.scalingo.io"
+ ],
+ "script-src": [
+ "'sha256-/t6zcidx62fnfge+2dp12vvkt1t7yl6x+dlwhidawgq='",
+ "'sha384-+fhlgdliu1c0oav9wzvmuzbstyyikhskui3ztmp20+cwg+uefsfgyit0ndapqqa/'",
+ "'sha384-1gtei4f77yyyo1nltaukqckrju8ersicgvdxwgbj7k1s/hkhoibmq2n3afmqcsc8'",
+ "'sha384-3lqp3iykmz977g9+uf77b3atwxouysza4zvt3iszqxghuzowlwdkhwz2cyhbt0tz'",
+ "'sha384-3zknthxmhyr4rdo9j8agelbc5foyur8z9cyodepx66zfqhlqgrcp7cliaqwhqg0g'",
+ "'sha384-4opwystwz3+kyfqxakx3c0o6s+uuztxtlll6koiqactesslsmm258/io/tiu8a8o'",
+ "'sha384-6hairanu+xwknxnbt0vieunzi1kyks0dxiaqz+21q69wvp2f2arrfqet5eit+v4c'",
+ "'sha384-7lz86fu2rphm2dxic+gxhvlt6hhkz6p/xqs+pbwpvqooezee04itzi0vzrnm0da2'",
+ "'sha384-8mxl49fx+im14rfty7kibdlkd20hqqbj6upljrevljc/e/oybvldq3lhlp27ykon'",
+ "'sha384-atmbkiyvvnh9fyryl1rgznq1r18kaajw9ncaqxyapy5/lcgyjpd3/rcs4cdqtb0t'",
+ "'sha384-bhhx/rnb23nebcfmzbzujfrsyehb5fes6p6wmdmmcp/bx6irnzh7q+hlgd5ukq9g'",
+ "'sha384-dhfbss3gxci/n2vung1fbxzfuae5ppouis9daunows/mhhefq4be75xgzcxzfew4'",
+ "'sha384-dqmipt22vskrci9zcut+j3idsrr34de5kivekqbhtxt6vqudo/rhhatviw+t+5+u'",
+ "'sha384-f2eunhurv7ypcliar88+pa8m/zdlkert2nwddtjjyiu+h9rd4gmk+zprq9zopxqf'",
+ "'sha384-if0xkyh7d/uz3fprugmevmd/en0p+c8rerkiprbfgibknm00rktbg4ftn6ntak3f'",
+ "'sha384-kchd3iitwwqiacjw0ibi8xsx1meqljm+fws+cy+d6te8svcbw/vfsh1uqnh2pt93'",
+ "'sha384-kyqsafuzg6yqhhcsnvenfzmizcxlirtxalta5kswra2xzr3d0aeffpkumnjg63ki'",
+ "'sha384-l7czstfdmwprzdilgpkd5covahs0tqqw3leztesuvyfshhc3uyymoyvdcrzqvqea'",
+ "'sha384-ltjrywgymdbqtt0nk/pp8giw8xxvhx8ibxag9ukh1pyvsukc+8halw0wob88fhea'",
+ "'sha384-manr+5q0uevrqx6xqykukuw+qzk8gir0lulfc0+txft4jizc+s4gajmkddragl4b'",
+ "'sha384-nyspvwzpzd412cd95udduyh3svkdcedfsqzt4/rfn5y/1ivosmmcwkdinge4a9v7'",
+ "'sha384-o2xwppv4mwbml1xcyeerpyk3kp/svwgrztyuv9pjcyk5gazfthpdicvvftb6ohbi'",
+ "'sha384-ooshgkravhm3f4lln8jca9q+zoszbcveah/xxfk8tqgemc1oy2cyt3yew5uijrug'",
+ "'sha384-pxokv+2ez83fauogp6fgnigndky4gb1+weiwbkitiml0q6qak/qhnwn2u/ahw/fa'",
+ "'sha384-qxafwpkii1epro3bw76gabnhxbd12dpgrgqhe+btau52bwwv5bbc6qh+0eaf03i1'",
+ "'sha384-rwii+5olhn5gibofguxkaqeoihbuglb8zjmhpgveawrgougatcibkzdlalpkp5vy'",
+ "'sha384-u7lz4nvhf73dzstm9pqp8aolzd5zxjrb1giunzycrq97db0emufvw2ik2b0jgbwg'",
+ "'sha384-wajif8hbz87wy5lekoovtnwjcs537f9h8bhcpbq7rwip+xujvapht2t8sfuuz9q4'",
+ "'sha384-wcczgpsjeaftx5qltst2czg65zyyptjcfd/wrpwnkqfofq2wq7dr2hksznsohrkk'",
+ "'sha384-xiqf7xspjk1zckb3ldngs/gooovzh4nbpaxjawujk9e+vjw4easlo2q6xlecvp6v'",
+ "'sha384-xkpmsbjg87iagmrit09cgpvcswpnp21cyhpk6zr+xnsrvt7wk1xt1d2x63n4zdk9'",
+ "'strict-dynamic'",
+ "'unsafe-eval'"
+ ],
+ "upgrade-insecure-requests": [
+ "'none'"
+ ],
+ "script-src-elem": [
+ "'self'",
+ "'unsafe-inline'",
+ "https://baserow.io",
+ "https://eu-assets.i.posthog.com",
+ "https://eu.i.posthog.com",
+ "https://stats.beta.gouv.fr",
+ "https://tee-metabase.osc-fr1.scalingo.io"
+ ],
+ "worker-src": [
+ "'self'",
+ "blob:"
+ ],
+ "connect-src": [
+ "'self'",
+ "https://baserow.io",
+ "https://eu-assets.i.posthog.com",
+ "https://eu.i.posthog.com",
+ "https://sentry.incubateur.net",
+ "https://stats.beta.gouv.fr",
+ "https://tee-metabase.osc-fr1.scalingo.io"
+ ],
+ "frame-src": [
+ "'self'",
+ "https://baserow.io",
+ "https://tee-metabase.osc-fr1.scalingo.io"
+ ],
+ "default-src": [
+ "'none'"
+ ]
},
- "pass": true,
- "result": "contribute-json-only-required-on-mozilla-properties",
- "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla",
- "score_modifier": 0
+ "http": true,
+ "meta": true,
+ "policy": {
+ "antiClickjacking": true,
+ "defaultNone": true,
+ "insecureBaseUri": false,
+ "insecureFormAction": false,
+ "insecureSchemeActive": false,
+ "insecureSchemePassive": false,
+ "strictDynamic": true,
+ "unsafeEval": true,
+ "unsafeInline": false,
+ "unsafeInlineStyle": true,
+ "unsafeObjects": false
+ },
+ "numPolicies": 2
},
"cookies": {
"expectation": "cookies-secure-with-httponly-sessions",
- "name": "cookies",
- "output": {
- "data": null,
- "sameSite": null
- },
"pass": true,
"result": "cookies-not-found",
- "score_description": "No cookies detected",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "sameSite": false
},
"cross-origin-resource-sharing": {
"expectation": "cross-origin-resource-sharing-not-implemented",
- "name": "cross-origin-resource-sharing",
- "output": {
- "data": {
- "acao": "*",
- "clientaccesspolicy": null,
- "crossdomain": null
- }
- },
"pass": true,
- "result": "cross-origin-resource-sharing-implemented-with-public-access",
- "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header",
- "score_modifier": 0
+ "result": "cross-origin-resource-sharing-not-implemented",
+ "scoreModifier": 0,
+ "data": null
},
"redirection": {
"expectation": "redirection-to-https",
- "name": "redirection",
- "output": {
- "destination": "https://preprod.mission-transition-ecologique.incubateur.net/",
- "redirects": true,
- "route": [
- "http://preprod.mission-transition-ecologique.incubateur.net/",
- "https://preprod.mission-transition-ecologique.incubateur.net/"
- ],
- "status_code": 200
- },
"pass": true,
"result": "redirection-to-https",
- "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "destination": "https://preprod.mission-transition-ecologique.incubateur.net/",
+ "redirects": true,
+ "route": [
+ "http://preprod.mission-transition-ecologique.incubateur.net/",
+ "https://preprod.mission-transition-ecologique.incubateur.net/"
+ ],
+ "statusCode": 200
},
"referrer-policy": {
"expectation": "referrer-policy-private",
- "name": "referrer-policy",
- "output": {
- "data": null,
- "http": false,
- "meta": false
- },
"pass": true,
- "result": "referrer-policy-not-implemented",
- "score_description": "Referrer-Policy header not implemented",
- "score_modifier": 0
+ "result": "referrer-policy-private",
+ "scoreModifier": 5,
+ "data": "no-referrer",
+ "http": true,
+ "meta": false
},
"strict-transport-security": {
"expectation": "hsts-implemented-max-age-at-least-six-months",
- "name": "strict-transport-security",
- "output": {
- "data": "max-age=31536000",
- "includeSubDomains": false,
- "max-age": 31536000,
- "preload": false,
- "preloaded": false
- },
"pass": true,
"result": "hsts-implemented-max-age-at-least-six-months",
- "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "max-age=15552000; includeSubDomains;",
+ "includeSubDomains": true,
+ "maxAge": 15552000,
+ "preload": false,
+ "preloaded": false
},
"subresource-integrity": {
"expectation": "sri-implemented-and-external-scripts-loaded-securely",
- "name": "subresource-integrity",
- "output": {
- "data": {}
- },
"pass": true,
- "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin",
- "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin",
- "score_modifier": 0
+ "result": "sri-implemented-and-all-scripts-loaded-securely",
+ "scoreModifier": 5,
+ "data": {}
},
"x-content-type-options": {
"expectation": "x-content-type-options-nosniff",
- "name": "x-content-type-options",
- "output": {
- "data": "nosniff"
- },
"pass": true,
"result": "x-content-type-options-nosniff",
- "score_description": "X-Content-Type-Options header set to \"nosniff\"",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "nosniff"
},
"x-frame-options": {
"expectation": "x-frame-options-sameorigin-or-deny",
- "name": "x-frame-options",
- "output": {
- "data": "ALLOW-FROM https://place-des-entreprises.beta.gouv.fr"
- },
"pass": true,
"result": "x-frame-options-implemented-via-csp",
- "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive",
- "score_modifier": 5
- },
- "x-xss-protection": {
- "expectation": "x-xss-protection-disabled",
- "name": "x-xss-protection",
- "output": {
- "data": null
- },
+ "scoreModifier": 5,
+ "data": "SAMEORIGIN"
+ },
+ "cross-origin-resource-policy": {
+ "expectation": "corp-implemented-with-same-site",
"pass": true,
- "result": "x-xss-protection-not-implemented",
- "score_description": "Deprecated X-XSS-Protection header not implemented",
- "score_modifier": 0
+ "result": "corp-implemented-with-same-origin",
+ "scoreModifier": 10,
+ "data": "same-origin",
+ "http": true,
+ "meta": false
}
}
},
"updownio": null,
- "nmap": null,
+ "nmap": {
+ "host": "preprod.mission-transition-ecologique.incubateur.net",
+ "protocol": "tcp",
+ "closed_ports": "998",
+ "open_ports": [
+ {
+ "service": {
+ "name": "http",
+ "id": "80",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "https",
+ "id": "443",
+ "vulnerabilities": []
+ }
+ }
+ ],
+ "grade": "A"
+ },
"dependabot": {
"totalCount": 0,
"grade": "A",
@@ -68380,77 +69955,77 @@
"testssl": [
{
"id": "service",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -68458,7 +70033,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -68466,7 +70041,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -68474,7 +70049,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -68482,7 +70057,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -68490,7 +70065,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -68498,532 +70073,525 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "42 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2025-01-13 08:13"
},
{
"id": "cert_notAfter",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "2025-04-13 08:13"
},
{
"id": "cert_extlifeSpan",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "http://r11.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "R11 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "R11 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "-1 seconds from localtime"
+ "finding": "0 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
- "finding": "1737862211"
+ "finding": "1740885694"
},
{
"id": "HSTS_time",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "180 days (=15552000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "includes subdomains"
},
{
"id": "HSTS_preload",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "SAMEORIGIN"
},
{
"id": "X-Content-Type-Options",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
- "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://embed.typeform.com; script-src 'self' 'strict-dynamic' 'unsafe-eval' 'sha256-BrDImuRA5c6rY2f1mHHqAQz2UFWal7BPm12wtZ4ZSNU=' 'sha384-9EFXYcWU7nUcoGEr2nSra+jsG/aCFr+8p/TJfi+ZbnBCNq3pIq6SflUDNeeNAlEf' 'sha384-AStI8mbhM9Kr/2DmSY1TygSUWVWw8YOlx0DnSyAOW7dQPzQrC6jJbpT4ZfWg7Xuj' 'sha384-uA17d4ZvX+00xHH7AOWB+7B1WxeSAwhU2mAaENv7QvV88Lmd+TnUv89bOcv2PYQe' 'sha384-aXocT45n9SVCNwFOc8Fo0ZwXhxWt7UzWcNiDSeId395j1s9sdevn+8etsXD5K0h+' 'sha384-f9wjA3d3ETLmDynyrPE3nVPXrsCSxXrwd4TNPuILv0O2sIhDTK03PbngLq4x8PEm' 'sha384-2CEc2IOY2MeJS4g9rcoGMzcOJVETpyjWUrCK/jdHT67ynEVE3L/i6hmFFvxpcQiH' 'sha384-8DFL+ppQlxLWTsjUjtUJk0LJm0I7oTzEPJ6vGmFYPprrq4gW88JpPd0LcHdv+8mo' 'sha384-td24rFarnH8YZxGpWebzO/opNxDzHhdqI39JkhaqOEhGb7cPbOQzs4Fjl7f8BjML' 'sha384-kbGIX7CFgrVm8wd6jkwOiB9fZRZY1WrkzaMlex8cmhYpfv7yCDcT77FbS+mi1Qi/' 'sha384-6ZtmMHo6oHnPeyIfDV7ga/sztYQQMahu4JdNAoZDMDY1TNYzpANDhqyesJaYLMsg' 'sha384-ameT0pa0d1sgS0xOgWqpLKkX8pnrgYAkfoECTC7HEPxbOOZEK7mg/1A0+G7NgmsJ' 'sha384-iMru+6X9/gcll69o4EOdBXBsfGHmINJTwLTFJM4uKodDu7m0AxT67aMniHze9f0/' 'sha384-VSuAaGoAUIFlmkst+a1Of9SdnlbzzmfIruZ1ea3apvXdxTjx8pxPsCKrs/XxvGyw' 'sha384-tR2qMl+8Kpa4l6jw2gmSVyyhmZhHkn10KVSnTnyOfjwE8IaMonlFnA/CdPZv23g+'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://embed.typeform.com https://api.typeform.com https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://form.typeform.com; default-src 'none';"
+ "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; script-src 'self' 'strict-dynamic' 'unsafe-eval' 'sha256-/t6Zcidx62FnfGe+2DP12Vvkt1T7Yl6x+dlwhiDAWgQ=' 'sha384-rwII+5OLhn5giBOfgUXKaQeoIHBUgLB8ZJmHpgveAwRgoUgAtCiBKZdlALPKP5vy' 'sha384-XIqF7XSpJK1zCkB3lDnGS/GOoOvZH4NbPAxJawUjk9E+VJW4EaSLO2q6XlEcvP6v' 'sha384-kYqsaFuZG6YQhHcsNveNfzmiZcXliRtxAltA5KsWRa2XzR3d0aeFfPkumNjg63Ki' 'sha384-6hAIRaNU+xWknXNbT0vieunzI1kYKS0DXiAqz+21q69WvP2F2ARrFqEt5EIT+V4c' 'sha384-DqMIPt22vSKrcI9ZcUT+J3IdsRr34DE5kiVEKqbHtxt6VqUDO/RHHATViw+t+5+U' 'sha384-NYSPVWZpZD412cd95UdDUYH3SVkDCEDFsqzt4/rfn5Y/1IvOSMMcwkDINGe4a9v7' 'sha384-1gTEi4f77yYYO1nltaUKqcKrJU8ERsIcgvdXwgbJ7k1S/HKhOIBMq2N3AfmQcsC8' 'sha384-MAnr+5Q0UevRQx6xqYKukuW+qZK8Gir0LulFC0+TxFT4jiZC+s4gAjmKDdRAgL4b' 'sha384-atMbkiYvvnH9fyRyl1RgZNq1r18kAaJw9NCAQXYAPy5/lCGYjPD3/RCS4CDQtb0t' 'sha384-LTjrYwGYMdbQtT0nk/pP8GIw8xXvhX8IBXaG9ukh1pYVsUKC+8haLW0wob88FHEa' 'sha384-F2eUnhUrv7yPcliAR88+Pa8m/ZDLkErT2nWDdTjjYiu+H9Rd4gmK+ZpRq9zOpXQf' 'sha384-iF0xkyh7d/Uz3fPRuGMEVMD/en0P+C8rErKiprBFgiBknm00rktBg4fTn6nTak3F' 'sha384-wAJif8hBz87wY5lEKoovtNWjCs537f9H8BHcPbQ7RwiP+xujVapHt2t8SFuuZ9q4' 'sha384-bhhx/rNb23neBCFmzbzUjfRSyehB5Fes6P6WmdmmCP/Bx6iRNZh7Q+hLGd5UKQ9g' 'sha384-+FhlgdlIu1C0oaV9wzvmUZbstyYikhskuI3ZTmP20+cWg+UeFSFGYIt0nDAPQQa/' 'sha384-u7lz4nvHF73DZstM9pqP8aoLzD5ZXjrB1GIuNzYcRQ97dB0emufVw2ik2b0jgbwG' 'sha384-l7CZSTfDmwPrZdilGpKd5CoVaHs0tQQw3LEztEsUVyFShhC3uYymOyvdcRzQvQEa' 'sha384-kcHd3iitwwQiaCJw0iBI8xsx1MEqlJm+FwS+CY+D6tE8SvCBw/vfsH1uQnH2pt93' 'sha384-8MXl49Fx+iM14RFty7KibDlKd20HqQbJ6UPlJrEVLJc/E/OybvlDQ3lhlp27YKON' 'sha384-QxafWPkii1Epro3BW76GabNhxbD12DPGRgqhE+BTau52bWWV5bbc6Qh+0eAf03I1' 'sha384-3ZKNtHXmHyR4RDo9J8agELbc5FOyur8Z9cYOdepx66zfQhlQgrCP7ClIaQwHqg0g' 'sha384-4OpWySTWz3+kyfqxaKX3C0o6s+uUZtxTlLL6kOiQacTEsslsmm258/Io/tiu8A8O' 'sha384-O2xWppV4MwbML1xCyeerpYK3kp/SvwGRzTyuV9pjcYK5gAzfThpdIcvVftB6oHbi' 'sha384-xkPmSBjg87iAGMrIT09cgpVcSWpNP21cyHpk6ZR+xNsRvT7wk1xT1D2x63n4ZDk9' 'sha384-PXOkv+2ez83fauogp6fGnIGndkY4Gb1+WeIwBKiTImL0q6qak/qHNWN2U/ahW/fa' 'sha384-dHfBSS3GxcI/n2vUng1FBxZFUae5PpOuis9DAuNOws/MhHefq4Be75xgzCxzFEw4' 'sha384-3lQP3iyKmz977g9+uf77B3ATwxOuYSza4ZVT3iSZQxGhUZowLwdkHWZ2cYHbT0TZ' 'sha384-7lz86Fu2rPHm2DXIc+gXHvLt6HHKz6p/xQs+pbwpvqOoEZEE04ItZI0vzrNM0dA2' 'sha384-WCCZgpsjEaFTX5qltST2czg65ZYypTjCfD/wRPWnkqfOfQ2WQ7DR2HkSZnsoHrKK' 'sha384-OosHgkraVHM3f4Lln8jcA9q+ZoSZBcVeAh/xXFk8TQgEMc1Oy2Cyt3YeW5uIjRUG'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://baserow.io https://tee-metabase.osc-fr1.scalingo.io https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; default-src 'none';"
},
{
"id": "Permissions-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
{
"id": "Cross-Origin-Opener-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "Cross-Origin-Resource-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
- {
- "id": "Cross-Origin-Embedder-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
- "port": "443",
- "severity": "INFO",
- "finding": "credentialless"
- },
{
"id": "X-XSS-Protection",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "0"
},
{
"id": "Access-Control-Allow-Origin",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "*"
},
{
"id": "Permissions-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
{
"id": "Referrer-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "no-referrer"
},
{
"id": "banner_reverseproxy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -69031,7 +70599,7 @@
},
{
"id": "heartbleed",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -69040,7 +70608,7 @@
},
{
"id": "CCS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -69049,7 +70617,7 @@
},
{
"id": "ticketbleed",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -69058,7 +70626,7 @@
},
{
"id": "ROBOT",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -69067,7 +70635,7 @@
},
{
"id": "secure_renego",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -69075,7 +70643,7 @@
},
{
"id": "secure_client_renego",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -69084,7 +70652,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -69093,7 +70661,7 @@
},
{
"id": "BREACH",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -69102,7 +70670,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -69111,14 +70679,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -69127,7 +70695,7 @@
},
{
"id": "FREAK",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -69136,7 +70704,7 @@
},
{
"id": "DROWN",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -69145,7 +70713,7 @@
},
{
"id": "DROWN_hint",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -69154,7 +70722,7 @@
},
{
"id": "LOGJAM",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -69163,7 +70731,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -69172,7 +70740,7 @@
},
{
"id": "BEAST",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -69181,7 +70749,7 @@
},
{
"id": "LUCKY13",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -69190,7 +70758,7 @@
},
{
"id": "winshock",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -69199,7 +70767,7 @@
},
{
"id": "RC4",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -69208,392 +70776,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -69601,7 +71169,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -69609,7 +71177,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -69617,7 +71185,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -69625,7 +71193,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -69633,7 +71201,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -69641,532 +71209,525 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "42 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "2025-01-13 08:13"
},
{
"id": "cert_notAfter",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "2025-04-13 08:13"
},
{
"id": "cert_extlifeSpan",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "http://r11.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "R11 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "R11 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "0 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
- "finding": "1737862264"
+ "finding": "1740885747"
},
{
"id": "HSTS_time",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "180 days (=15552000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "includes subdomains"
},
{
"id": "HSTS_preload",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "SAMEORIGIN"
},
{
"id": "X-Content-Type-Options",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
- "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://embed.typeform.com; script-src 'self' 'strict-dynamic' 'unsafe-eval' 'sha256-BrDImuRA5c6rY2f1mHHqAQz2UFWal7BPm12wtZ4ZSNU=' 'sha384-9EFXYcWU7nUcoGEr2nSra+jsG/aCFr+8p/TJfi+ZbnBCNq3pIq6SflUDNeeNAlEf' 'sha384-AStI8mbhM9Kr/2DmSY1TygSUWVWw8YOlx0DnSyAOW7dQPzQrC6jJbpT4ZfWg7Xuj' 'sha384-uA17d4ZvX+00xHH7AOWB+7B1WxeSAwhU2mAaENv7QvV88Lmd+TnUv89bOcv2PYQe' 'sha384-aXocT45n9SVCNwFOc8Fo0ZwXhxWt7UzWcNiDSeId395j1s9sdevn+8etsXD5K0h+' 'sha384-f9wjA3d3ETLmDynyrPE3nVPXrsCSxXrwd4TNPuILv0O2sIhDTK03PbngLq4x8PEm' 'sha384-2CEc2IOY2MeJS4g9rcoGMzcOJVETpyjWUrCK/jdHT67ynEVE3L/i6hmFFvxpcQiH' 'sha384-8DFL+ppQlxLWTsjUjtUJk0LJm0I7oTzEPJ6vGmFYPprrq4gW88JpPd0LcHdv+8mo' 'sha384-td24rFarnH8YZxGpWebzO/opNxDzHhdqI39JkhaqOEhGb7cPbOQzs4Fjl7f8BjML' 'sha384-kbGIX7CFgrVm8wd6jkwOiB9fZRZY1WrkzaMlex8cmhYpfv7yCDcT77FbS+mi1Qi/' 'sha384-6ZtmMHo6oHnPeyIfDV7ga/sztYQQMahu4JdNAoZDMDY1TNYzpANDhqyesJaYLMsg' 'sha384-ameT0pa0d1sgS0xOgWqpLKkX8pnrgYAkfoECTC7HEPxbOOZEK7mg/1A0+G7NgmsJ' 'sha384-iMru+6X9/gcll69o4EOdBXBsfGHmINJTwLTFJM4uKodDu7m0AxT67aMniHze9f0/' 'sha384-VSuAaGoAUIFlmkst+a1Of9SdnlbzzmfIruZ1ea3apvXdxTjx8pxPsCKrs/XxvGyw' 'sha384-tR2qMl+8Kpa4l6jw2gmSVyyhmZhHkn10KVSnTnyOfjwE8IaMonlFnA/CdPZv23g+'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://embed.typeform.com https://api.typeform.com https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://form.typeform.com; default-src 'none';"
+ "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; script-src 'self' 'strict-dynamic' 'unsafe-eval' 'sha256-/t6Zcidx62FnfGe+2DP12Vvkt1T7Yl6x+dlwhiDAWgQ=' 'sha384-rwII+5OLhn5giBOfgUXKaQeoIHBUgLB8ZJmHpgveAwRgoUgAtCiBKZdlALPKP5vy' 'sha384-XIqF7XSpJK1zCkB3lDnGS/GOoOvZH4NbPAxJawUjk9E+VJW4EaSLO2q6XlEcvP6v' 'sha384-kYqsaFuZG6YQhHcsNveNfzmiZcXliRtxAltA5KsWRa2XzR3d0aeFfPkumNjg63Ki' 'sha384-6hAIRaNU+xWknXNbT0vieunzI1kYKS0DXiAqz+21q69WvP2F2ARrFqEt5EIT+V4c' 'sha384-DqMIPt22vSKrcI9ZcUT+J3IdsRr34DE5kiVEKqbHtxt6VqUDO/RHHATViw+t+5+U' 'sha384-NYSPVWZpZD412cd95UdDUYH3SVkDCEDFsqzt4/rfn5Y/1IvOSMMcwkDINGe4a9v7' 'sha384-1gTEi4f77yYYO1nltaUKqcKrJU8ERsIcgvdXwgbJ7k1S/HKhOIBMq2N3AfmQcsC8' 'sha384-MAnr+5Q0UevRQx6xqYKukuW+qZK8Gir0LulFC0+TxFT4jiZC+s4gAjmKDdRAgL4b' 'sha384-atMbkiYvvnH9fyRyl1RgZNq1r18kAaJw9NCAQXYAPy5/lCGYjPD3/RCS4CDQtb0t' 'sha384-LTjrYwGYMdbQtT0nk/pP8GIw8xXvhX8IBXaG9ukh1pYVsUKC+8haLW0wob88FHEa' 'sha384-F2eUnhUrv7yPcliAR88+Pa8m/ZDLkErT2nWDdTjjYiu+H9Rd4gmK+ZpRq9zOpXQf' 'sha384-iF0xkyh7d/Uz3fPRuGMEVMD/en0P+C8rErKiprBFgiBknm00rktBg4fTn6nTak3F' 'sha384-wAJif8hBz87wY5lEKoovtNWjCs537f9H8BHcPbQ7RwiP+xujVapHt2t8SFuuZ9q4' 'sha384-bhhx/rNb23neBCFmzbzUjfRSyehB5Fes6P6WmdmmCP/Bx6iRNZh7Q+hLGd5UKQ9g' 'sha384-+FhlgdlIu1C0oaV9wzvmUZbstyYikhskuI3ZTmP20+cWg+UeFSFGYIt0nDAPQQa/' 'sha384-u7lz4nvHF73DZstM9pqP8aoLzD5ZXjrB1GIuNzYcRQ97dB0emufVw2ik2b0jgbwG' 'sha384-l7CZSTfDmwPrZdilGpKd5CoVaHs0tQQw3LEztEsUVyFShhC3uYymOyvdcRzQvQEa' 'sha384-kcHd3iitwwQiaCJw0iBI8xsx1MEqlJm+FwS+CY+D6tE8SvCBw/vfsH1uQnH2pt93' 'sha384-8MXl49Fx+iM14RFty7KibDlKd20HqQbJ6UPlJrEVLJc/E/OybvlDQ3lhlp27YKON' 'sha384-QxafWPkii1Epro3BW76GabNhxbD12DPGRgqhE+BTau52bWWV5bbc6Qh+0eAf03I1' 'sha384-3ZKNtHXmHyR4RDo9J8agELbc5FOyur8Z9cYOdepx66zfQhlQgrCP7ClIaQwHqg0g' 'sha384-4OpWySTWz3+kyfqxaKX3C0o6s+uUZtxTlLL6kOiQacTEsslsmm258/Io/tiu8A8O' 'sha384-O2xWppV4MwbML1xCyeerpYK3kp/SvwGRzTyuV9pjcYK5gAzfThpdIcvVftB6oHbi' 'sha384-xkPmSBjg87iAGMrIT09cgpVcSWpNP21cyHpk6ZR+xNsRvT7wk1xT1D2x63n4ZDk9' 'sha384-PXOkv+2ez83fauogp6fGnIGndkY4Gb1+WeIwBKiTImL0q6qak/qHNWN2U/ahW/fa' 'sha384-dHfBSS3GxcI/n2vUng1FBxZFUae5PpOuis9DAuNOws/MhHefq4Be75xgzCxzFEw4' 'sha384-3lQP3iyKmz977g9+uf77B3ATwxOuYSza4ZVT3iSZQxGhUZowLwdkHWZ2cYHbT0TZ' 'sha384-7lz86Fu2rPHm2DXIc+gXHvLt6HHKz6p/xQs+pbwpvqOoEZEE04ItZI0vzrNM0dA2' 'sha384-WCCZgpsjEaFTX5qltST2czg65ZYypTjCfD/wRPWnkqfOfQ2WQ7DR2HkSZnsoHrKK' 'sha384-OosHgkraVHM3f4Lln8jcA9q+ZoSZBcVeAh/xXFk8TQgEMc1Oy2Cyt3YeW5uIjRUG'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://baserow.io https://tee-metabase.osc-fr1.scalingo.io https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; default-src 'none';"
},
{
"id": "Permissions-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
{
"id": "Cross-Origin-Opener-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "Cross-Origin-Resource-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
- {
- "id": "Cross-Origin-Embedder-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
- "port": "443",
- "severity": "INFO",
- "finding": "credentialless"
- },
{
"id": "X-XSS-Protection",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "0"
},
{
"id": "Access-Control-Allow-Origin",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "*"
},
{
"id": "Permissions-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
{
"id": "Referrer-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "no-referrer"
},
{
"id": "banner_reverseproxy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -70174,7 +71735,7 @@
},
{
"id": "heartbleed",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -70183,7 +71744,7 @@
},
{
"id": "CCS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -70192,7 +71753,7 @@
},
{
"id": "ticketbleed",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -70201,7 +71762,7 @@
},
{
"id": "ROBOT",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -70210,7 +71771,7 @@
},
{
"id": "secure_renego",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -70218,7 +71779,7 @@
},
{
"id": "secure_client_renego",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -70227,7 +71788,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -70236,7 +71797,7 @@
},
{
"id": "BREACH",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -70245,7 +71806,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -70254,14 +71815,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -70270,7 +71831,7 @@
},
{
"id": "FREAK",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -70279,7 +71840,7 @@
},
{
"id": "DROWN",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -70288,7 +71849,7 @@
},
{
"id": "DROWN_hint",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -70297,7 +71858,7 @@
},
{
"id": "LOGJAM",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -70306,7 +71867,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -70315,7 +71876,7 @@
},
{
"id": "BEAST",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -70324,7 +71885,7 @@
},
{
"id": "LUCKY13",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -70333,7 +71894,7 @@
},
{
"id": "winshock",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -70342,7 +71903,7 @@
},
{
"id": "RC4",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -70351,392 +71912,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.236.90",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -70744,7 +72305,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -70752,7 +72313,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -70760,7 +72321,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -70768,7 +72329,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -70776,7 +72337,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -70784,532 +72345,525 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "42 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2025-01-13 08:13"
},
{
"id": "cert_notAfter",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "2025-04-13 08:13"
},
{
"id": "cert_extlifeSpan",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "http://r11.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "R11 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "R11 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "0 seconds from localtime"
+ "finding": "-1 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
- "finding": "1737862317"
+ "finding": "1740885802"
},
{
"id": "HSTS_time",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "180 days (=15552000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "includes subdomains"
},
{
"id": "HSTS_preload",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "SAMEORIGIN"
},
{
"id": "X-Content-Type-Options",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
- "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://embed.typeform.com; script-src 'self' 'strict-dynamic' 'unsafe-eval' 'sha256-BrDImuRA5c6rY2f1mHHqAQz2UFWal7BPm12wtZ4ZSNU=' 'sha384-9EFXYcWU7nUcoGEr2nSra+jsG/aCFr+8p/TJfi+ZbnBCNq3pIq6SflUDNeeNAlEf' 'sha384-AStI8mbhM9Kr/2DmSY1TygSUWVWw8YOlx0DnSyAOW7dQPzQrC6jJbpT4ZfWg7Xuj' 'sha384-uA17d4ZvX+00xHH7AOWB+7B1WxeSAwhU2mAaENv7QvV88Lmd+TnUv89bOcv2PYQe' 'sha384-aXocT45n9SVCNwFOc8Fo0ZwXhxWt7UzWcNiDSeId395j1s9sdevn+8etsXD5K0h+' 'sha384-f9wjA3d3ETLmDynyrPE3nVPXrsCSxXrwd4TNPuILv0O2sIhDTK03PbngLq4x8PEm' 'sha384-2CEc2IOY2MeJS4g9rcoGMzcOJVETpyjWUrCK/jdHT67ynEVE3L/i6hmFFvxpcQiH' 'sha384-8DFL+ppQlxLWTsjUjtUJk0LJm0I7oTzEPJ6vGmFYPprrq4gW88JpPd0LcHdv+8mo' 'sha384-td24rFarnH8YZxGpWebzO/opNxDzHhdqI39JkhaqOEhGb7cPbOQzs4Fjl7f8BjML' 'sha384-kbGIX7CFgrVm8wd6jkwOiB9fZRZY1WrkzaMlex8cmhYpfv7yCDcT77FbS+mi1Qi/' 'sha384-6ZtmMHo6oHnPeyIfDV7ga/sztYQQMahu4JdNAoZDMDY1TNYzpANDhqyesJaYLMsg' 'sha384-ameT0pa0d1sgS0xOgWqpLKkX8pnrgYAkfoECTC7HEPxbOOZEK7mg/1A0+G7NgmsJ' 'sha384-iMru+6X9/gcll69o4EOdBXBsfGHmINJTwLTFJM4uKodDu7m0AxT67aMniHze9f0/' 'sha384-VSuAaGoAUIFlmkst+a1Of9SdnlbzzmfIruZ1ea3apvXdxTjx8pxPsCKrs/XxvGyw' 'sha384-tR2qMl+8Kpa4l6jw2gmSVyyhmZhHkn10KVSnTnyOfjwE8IaMonlFnA/CdPZv23g+'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://embed.typeform.com https://api.typeform.com https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://form.typeform.com; default-src 'none';"
+ "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; script-src 'self' 'strict-dynamic' 'unsafe-eval' 'sha256-/t6Zcidx62FnfGe+2DP12Vvkt1T7Yl6x+dlwhiDAWgQ=' 'sha384-rwII+5OLhn5giBOfgUXKaQeoIHBUgLB8ZJmHpgveAwRgoUgAtCiBKZdlALPKP5vy' 'sha384-XIqF7XSpJK1zCkB3lDnGS/GOoOvZH4NbPAxJawUjk9E+VJW4EaSLO2q6XlEcvP6v' 'sha384-kYqsaFuZG6YQhHcsNveNfzmiZcXliRtxAltA5KsWRa2XzR3d0aeFfPkumNjg63Ki' 'sha384-6hAIRaNU+xWknXNbT0vieunzI1kYKS0DXiAqz+21q69WvP2F2ARrFqEt5EIT+V4c' 'sha384-DqMIPt22vSKrcI9ZcUT+J3IdsRr34DE5kiVEKqbHtxt6VqUDO/RHHATViw+t+5+U' 'sha384-NYSPVWZpZD412cd95UdDUYH3SVkDCEDFsqzt4/rfn5Y/1IvOSMMcwkDINGe4a9v7' 'sha384-1gTEi4f77yYYO1nltaUKqcKrJU8ERsIcgvdXwgbJ7k1S/HKhOIBMq2N3AfmQcsC8' 'sha384-MAnr+5Q0UevRQx6xqYKukuW+qZK8Gir0LulFC0+TxFT4jiZC+s4gAjmKDdRAgL4b' 'sha384-atMbkiYvvnH9fyRyl1RgZNq1r18kAaJw9NCAQXYAPy5/lCGYjPD3/RCS4CDQtb0t' 'sha384-LTjrYwGYMdbQtT0nk/pP8GIw8xXvhX8IBXaG9ukh1pYVsUKC+8haLW0wob88FHEa' 'sha384-F2eUnhUrv7yPcliAR88+Pa8m/ZDLkErT2nWDdTjjYiu+H9Rd4gmK+ZpRq9zOpXQf' 'sha384-iF0xkyh7d/Uz3fPRuGMEVMD/en0P+C8rErKiprBFgiBknm00rktBg4fTn6nTak3F' 'sha384-wAJif8hBz87wY5lEKoovtNWjCs537f9H8BHcPbQ7RwiP+xujVapHt2t8SFuuZ9q4' 'sha384-bhhx/rNb23neBCFmzbzUjfRSyehB5Fes6P6WmdmmCP/Bx6iRNZh7Q+hLGd5UKQ9g' 'sha384-+FhlgdlIu1C0oaV9wzvmUZbstyYikhskuI3ZTmP20+cWg+UeFSFGYIt0nDAPQQa/' 'sha384-u7lz4nvHF73DZstM9pqP8aoLzD5ZXjrB1GIuNzYcRQ97dB0emufVw2ik2b0jgbwG' 'sha384-l7CZSTfDmwPrZdilGpKd5CoVaHs0tQQw3LEztEsUVyFShhC3uYymOyvdcRzQvQEa' 'sha384-kcHd3iitwwQiaCJw0iBI8xsx1MEqlJm+FwS+CY+D6tE8SvCBw/vfsH1uQnH2pt93' 'sha384-8MXl49Fx+iM14RFty7KibDlKd20HqQbJ6UPlJrEVLJc/E/OybvlDQ3lhlp27YKON' 'sha384-QxafWPkii1Epro3BW76GabNhxbD12DPGRgqhE+BTau52bWWV5bbc6Qh+0eAf03I1' 'sha384-3ZKNtHXmHyR4RDo9J8agELbc5FOyur8Z9cYOdepx66zfQhlQgrCP7ClIaQwHqg0g' 'sha384-4OpWySTWz3+kyfqxaKX3C0o6s+uUZtxTlLL6kOiQacTEsslsmm258/Io/tiu8A8O' 'sha384-O2xWppV4MwbML1xCyeerpYK3kp/SvwGRzTyuV9pjcYK5gAzfThpdIcvVftB6oHbi' 'sha384-xkPmSBjg87iAGMrIT09cgpVcSWpNP21cyHpk6ZR+xNsRvT7wk1xT1D2x63n4ZDk9' 'sha384-PXOkv+2ez83fauogp6fGnIGndkY4Gb1+WeIwBKiTImL0q6qak/qHNWN2U/ahW/fa' 'sha384-dHfBSS3GxcI/n2vUng1FBxZFUae5PpOuis9DAuNOws/MhHefq4Be75xgzCxzFEw4' 'sha384-3lQP3iyKmz977g9+uf77B3ATwxOuYSza4ZVT3iSZQxGhUZowLwdkHWZ2cYHbT0TZ' 'sha384-7lz86Fu2rPHm2DXIc+gXHvLt6HHKz6p/xQs+pbwpvqOoEZEE04ItZI0vzrNM0dA2' 'sha384-WCCZgpsjEaFTX5qltST2czg65ZYypTjCfD/wRPWnkqfOfQ2WQ7DR2HkSZnsoHrKK' 'sha384-OosHgkraVHM3f4Lln8jcA9q+ZoSZBcVeAh/xXFk8TQgEMc1Oy2Cyt3YeW5uIjRUG'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://baserow.io https://tee-metabase.osc-fr1.scalingo.io https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; default-src 'none';"
},
{
"id": "Permissions-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
{
"id": "Cross-Origin-Opener-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "Cross-Origin-Resource-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
- {
- "id": "Cross-Origin-Embedder-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
- "port": "443",
- "severity": "INFO",
- "finding": "credentialless"
- },
{
"id": "X-XSS-Protection",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "0"
},
{
"id": "Access-Control-Allow-Origin",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "*"
},
{
"id": "Permissions-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
{
"id": "Referrer-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "no-referrer"
},
{
"id": "banner_reverseproxy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -71317,7 +72871,7 @@
},
{
"id": "heartbleed",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -71326,7 +72880,7 @@
},
{
"id": "CCS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -71335,7 +72889,7 @@
},
{
"id": "ticketbleed",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -71344,7 +72898,7 @@
},
{
"id": "ROBOT",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -71353,7 +72907,7 @@
},
{
"id": "secure_renego",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -71361,7 +72915,7 @@
},
{
"id": "secure_client_renego",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -71370,7 +72924,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -71379,7 +72933,7 @@
},
{
"id": "BREACH",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -71388,7 +72942,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -71397,14 +72951,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -71413,7 +72967,7 @@
},
{
"id": "FREAK",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -71422,7 +72976,7 @@
},
{
"id": "DROWN",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -71431,7 +72985,7 @@
},
{
"id": "DROWN_hint",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -71440,7 +72994,7 @@
},
{
"id": "LOGJAM",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -71449,7 +73003,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -71458,7 +73012,7 @@
},
{
"id": "BEAST",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -71467,7 +73021,7 @@
},
{
"id": "LUCKY13",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -71476,7 +73030,7 @@
},
{
"id": "winshock",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -71485,7 +73039,7 @@
},
{
"id": "RC4",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -71494,392 +73048,392 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/5.104.101.30",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "service",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -71887,7 +73441,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -71895,7 +73449,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -71903,7 +73457,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -71911,7 +73465,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -71919,7 +73473,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -71927,532 +73481,525 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "cipher_order",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "FS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "FS_ECDHE_curves",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "prime256v1 secp384r1 secp521r1"
},
{
"id": "TLS_extensions",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'"
},
{
"id": "TLS_session_ticket",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "valid for 300 seconds only (= 30 days"
+ "finding": "42 >= 30 days"
},
{
"id": "cert_notBefore",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "2025-01-13 08:13"
},
{
"id": "cert_notAfter",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "2025-04-13 08:13"
},
{
"id": "cert_extlifeSpan",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "cert_ocspURL",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "http://r11.o.lencr.org"
},
{
"id": "OCSP_stapling",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "cert_mustStapleExtension",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "2"
},
{
"id": "certs_list_ordering_problem",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "R11 (Let's Encrypt from US)"
},
{
"id": "intermediate_cert <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44"
},
{
"id": "intermediate_cert_notBefore <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "2024-03-13 00:00"
},
{
"id": "intermediate_cert_notAfter <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "2027-03-12 23:59"
},
{
"id": "intermediate_cert_expiration <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1>",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "R11 <-- ISRG Root X1"
},
{
"id": "intermediate_cert_badOCSP",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "-1 seconds from localtime"
+ "finding": "0 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "1737862370"
+ "finding": "1740885863"
},
{
"id": "HSTS_time",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "180 days (=15552000 seconds) > 15552000 seconds"
},
{
"id": "HSTS_subdomains",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "includes subdomains"
},
{
"id": "HSTS_preload",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "domain is NOT marked for preloading"
},
{
"id": "HPKP",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No Server banner line in header, interesting!"
},
{
"id": "banner_application",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No application banner found"
},
{
"id": "cookie_count",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "X-Frame-Options",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "SAMEORIGIN"
},
{
"id": "X-Content-Type-Options",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "nosniff"
},
{
"id": "Content-Security-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
- "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://embed.typeform.com; script-src 'self' 'strict-dynamic' 'unsafe-eval' 'sha256-BrDImuRA5c6rY2f1mHHqAQz2UFWal7BPm12wtZ4ZSNU=' 'sha384-9EFXYcWU7nUcoGEr2nSra+jsG/aCFr+8p/TJfi+ZbnBCNq3pIq6SflUDNeeNAlEf' 'sha384-AStI8mbhM9Kr/2DmSY1TygSUWVWw8YOlx0DnSyAOW7dQPzQrC6jJbpT4ZfWg7Xuj' 'sha384-uA17d4ZvX+00xHH7AOWB+7B1WxeSAwhU2mAaENv7QvV88Lmd+TnUv89bOcv2PYQe' 'sha384-aXocT45n9SVCNwFOc8Fo0ZwXhxWt7UzWcNiDSeId395j1s9sdevn+8etsXD5K0h+' 'sha384-f9wjA3d3ETLmDynyrPE3nVPXrsCSxXrwd4TNPuILv0O2sIhDTK03PbngLq4x8PEm' 'sha384-2CEc2IOY2MeJS4g9rcoGMzcOJVETpyjWUrCK/jdHT67ynEVE3L/i6hmFFvxpcQiH' 'sha384-8DFL+ppQlxLWTsjUjtUJk0LJm0I7oTzEPJ6vGmFYPprrq4gW88JpPd0LcHdv+8mo' 'sha384-td24rFarnH8YZxGpWebzO/opNxDzHhdqI39JkhaqOEhGb7cPbOQzs4Fjl7f8BjML' 'sha384-kbGIX7CFgrVm8wd6jkwOiB9fZRZY1WrkzaMlex8cmhYpfv7yCDcT77FbS+mi1Qi/' 'sha384-6ZtmMHo6oHnPeyIfDV7ga/sztYQQMahu4JdNAoZDMDY1TNYzpANDhqyesJaYLMsg' 'sha384-ameT0pa0d1sgS0xOgWqpLKkX8pnrgYAkfoECTC7HEPxbOOZEK7mg/1A0+G7NgmsJ' 'sha384-iMru+6X9/gcll69o4EOdBXBsfGHmINJTwLTFJM4uKodDu7m0AxT67aMniHze9f0/' 'sha384-VSuAaGoAUIFlmkst+a1Of9SdnlbzzmfIruZ1ea3apvXdxTjx8pxPsCKrs/XxvGyw' 'sha384-tR2qMl+8Kpa4l6jw2gmSVyyhmZhHkn10KVSnTnyOfjwE8IaMonlFnA/CdPZv23g+'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://embed.typeform.com https://api.typeform.com https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://form.typeform.com; default-src 'none';"
+ "finding": "base-uri 'self'; font-src 'self'; form-action 'self'; frame-ancestors 'self'; img-src 'self' data:; object-src 'self'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; script-src 'self' 'strict-dynamic' 'unsafe-eval' 'sha256-/t6Zcidx62FnfGe+2DP12Vvkt1T7Yl6x+dlwhiDAWgQ=' 'sha384-rwII+5OLhn5giBOfgUXKaQeoIHBUgLB8ZJmHpgveAwRgoUgAtCiBKZdlALPKP5vy' 'sha384-XIqF7XSpJK1zCkB3lDnGS/GOoOvZH4NbPAxJawUjk9E+VJW4EaSLO2q6XlEcvP6v' 'sha384-kYqsaFuZG6YQhHcsNveNfzmiZcXliRtxAltA5KsWRa2XzR3d0aeFfPkumNjg63Ki' 'sha384-6hAIRaNU+xWknXNbT0vieunzI1kYKS0DXiAqz+21q69WvP2F2ARrFqEt5EIT+V4c' 'sha384-DqMIPt22vSKrcI9ZcUT+J3IdsRr34DE5kiVEKqbHtxt6VqUDO/RHHATViw+t+5+U' 'sha384-NYSPVWZpZD412cd95UdDUYH3SVkDCEDFsqzt4/rfn5Y/1IvOSMMcwkDINGe4a9v7' 'sha384-1gTEi4f77yYYO1nltaUKqcKrJU8ERsIcgvdXwgbJ7k1S/HKhOIBMq2N3AfmQcsC8' 'sha384-MAnr+5Q0UevRQx6xqYKukuW+qZK8Gir0LulFC0+TxFT4jiZC+s4gAjmKDdRAgL4b' 'sha384-atMbkiYvvnH9fyRyl1RgZNq1r18kAaJw9NCAQXYAPy5/lCGYjPD3/RCS4CDQtb0t' 'sha384-LTjrYwGYMdbQtT0nk/pP8GIw8xXvhX8IBXaG9ukh1pYVsUKC+8haLW0wob88FHEa' 'sha384-F2eUnhUrv7yPcliAR88+Pa8m/ZDLkErT2nWDdTjjYiu+H9Rd4gmK+ZpRq9zOpXQf' 'sha384-iF0xkyh7d/Uz3fPRuGMEVMD/en0P+C8rErKiprBFgiBknm00rktBg4fTn6nTak3F' 'sha384-wAJif8hBz87wY5lEKoovtNWjCs537f9H8BHcPbQ7RwiP+xujVapHt2t8SFuuZ9q4' 'sha384-bhhx/rNb23neBCFmzbzUjfRSyehB5Fes6P6WmdmmCP/Bx6iRNZh7Q+hLGd5UKQ9g' 'sha384-+FhlgdlIu1C0oaV9wzvmUZbstyYikhskuI3ZTmP20+cWg+UeFSFGYIt0nDAPQQa/' 'sha384-u7lz4nvHF73DZstM9pqP8aoLzD5ZXjrB1GIuNzYcRQ97dB0emufVw2ik2b0jgbwG' 'sha384-l7CZSTfDmwPrZdilGpKd5CoVaHs0tQQw3LEztEsUVyFShhC3uYymOyvdcRzQvQEa' 'sha384-kcHd3iitwwQiaCJw0iBI8xsx1MEqlJm+FwS+CY+D6tE8SvCBw/vfsH1uQnH2pt93' 'sha384-8MXl49Fx+iM14RFty7KibDlKd20HqQbJ6UPlJrEVLJc/E/OybvlDQ3lhlp27YKON' 'sha384-QxafWPkii1Epro3BW76GabNhxbD12DPGRgqhE+BTau52bWWV5bbc6Qh+0eAf03I1' 'sha384-3ZKNtHXmHyR4RDo9J8agELbc5FOyur8Z9cYOdepx66zfQhlQgrCP7ClIaQwHqg0g' 'sha384-4OpWySTWz3+kyfqxaKX3C0o6s+uUZtxTlLL6kOiQacTEsslsmm258/Io/tiu8A8O' 'sha384-O2xWppV4MwbML1xCyeerpYK3kp/SvwGRzTyuV9pjcYK5gAzfThpdIcvVftB6oHbi' 'sha384-xkPmSBjg87iAGMrIT09cgpVcSWpNP21cyHpk6ZR+xNsRvT7wk1xT1D2x63n4ZDk9' 'sha384-PXOkv+2ez83fauogp6fGnIGndkY4Gb1+WeIwBKiTImL0q6qak/qHNWN2U/ahW/fa' 'sha384-dHfBSS3GxcI/n2vUng1FBxZFUae5PpOuis9DAuNOws/MhHefq4Be75xgzCxzFEw4' 'sha384-3lQP3iyKmz977g9+uf77B3ATwxOuYSza4ZVT3iSZQxGhUZowLwdkHWZ2cYHbT0TZ' 'sha384-7lz86Fu2rPHm2DXIc+gXHvLt6HHKz6p/xQs+pbwpvqOoEZEE04ItZI0vzrNM0dA2' 'sha384-WCCZgpsjEaFTX5qltST2czg65ZYypTjCfD/wRPWnkqfOfQ2WQ7DR2HkSZnsoHrKK' 'sha384-OosHgkraVHM3f4Lln8jcA9q+ZoSZBcVeAh/xXFk8TQgEMc1Oy2Cyt3YeW5uIjRUG'; upgrade-insecure-requests; script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; worker-src 'self' blob:; connect-src 'self' https://stats.beta.gouv.fr https://baserow.io https://tee-metabase.osc-fr1.scalingo.io https://eu.i.posthog.com https://eu-assets.i.posthog.com https://sentry.incubateur.net; frame-src 'self' https://baserow.io https://tee-metabase.osc-fr1.scalingo.io; default-src 'none';"
},
{
"id": "Permissions-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
{
"id": "Cross-Origin-Opener-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
{
"id": "Cross-Origin-Resource-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "same-origin"
},
- {
- "id": "Cross-Origin-Embedder-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
- "port": "443",
- "severity": "INFO",
- "finding": "credentialless"
- },
{
"id": "X-XSS-Protection",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "0"
},
{
"id": "Access-Control-Allow-Origin",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "*"
},
{
"id": "Permissions-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()"
},
{
"id": "Referrer-Policy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "no-referrer"
},
{
"id": "banner_reverseproxy",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -72460,7 +74007,7 @@
},
{
"id": "heartbleed",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -72469,7 +74016,7 @@
},
{
"id": "CCS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -72478,7 +74025,7 @@
},
{
"id": "ticketbleed",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -72487,7 +74034,7 @@
},
{
"id": "ROBOT",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -72496,7 +74043,7 @@
},
{
"id": "secure_renego",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -72504,7 +74051,7 @@
},
{
"id": "secure_client_renego",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -72513,7 +74060,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -72522,7 +74069,7 @@
},
{
"id": "BREACH",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -72531,7 +74078,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -72540,14 +74087,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -72556,7 +74103,7 @@
},
{
"id": "FREAK",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -72565,7 +74112,7 @@
},
{
"id": "DROWN",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -72574,7 +74121,7 @@
},
{
"id": "DROWN_hint",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -72583,7 +74130,7 @@
},
{
"id": "LOGJAM",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -72592,7 +74139,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -72601,7 +74148,7 @@
},
{
"id": "BEAST",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -72610,7 +74157,7 @@
},
{
"id": "LUCKY13",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-0169",
@@ -72619,7 +74166,7 @@
},
{
"id": "winshock",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -72628,7 +74175,7 @@
},
{
"id": "RC4",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -72637,325 +74184,325 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_81",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-android_90",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_X",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_11",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-android_12",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-java1102",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-java1703",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "rating_spec",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "OK",
"finding": "A+"
},
{
"id": "scanTime",
- "ip": "preprod.mission-transition-ecologique.incubateur.net/109.232.233.130",
+ "ip": "preprod.mission-transition-ecologique.incubateur.net/148.253.75.120",
"port": "443",
"severity": "INFO",
- "finding": "218"
+ "finding": "227"
}
],
"thirdparties": {
@@ -73116,7 +74663,7 @@
"zap": {
"@programName": "ZAP",
"@version": "2.16.0",
- "@generated": "Sun, 26 Jan 2025 03:22:49",
+ "@generated": "Sun, 2 Mar 2025 03:19:02",
"site": [
{
"@name": "https://preprod.mission-transition-ecologique.incubateur.net",
@@ -73124,13 +74671,6 @@
"@port": "443",
"@ssl": "true",
"alerts": [
- {
- "name": "PII Disclosure",
- "riskcode": "3",
- "confidence": "3",
- "riskdesc": "High (High)",
- "desc": "The response contains Personally Identifiable Information, such as CC number, SSN and similar sensitive data.
"
- },
{
"name": "CSP: script-src unsafe-eval",
"riskcode": "2",
@@ -73250,73 +74790,73 @@
},
"nuclei": [
{
- "template": "dns/dns-saas-service-detection.yaml",
- "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection",
- "template-id": "dns-saas-service-detection",
- "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml",
+ "template": "dns/caa-fingerprint.yaml",
+ "template-url": "https://templates.nuclei.sh/public/caa-fingerprint",
+ "template-id": "caa-fingerprint",
+ "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml",
"info": {
- "name": "DNS SaaS Service Detection",
+ "name": "CAA Record",
"author": [
- "noah @thesubtlety",
"pdteam"
],
"tags": [
"dns",
- "service"
+ "caa"
],
- "description": "A CNAME DNS record was discovered",
+ "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.",
"reference": [
- "https://ns1.com/resources/cname",
- "https://www.theregister.com/2021/02/24/dns_cname_tracking/",
- "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/"
+ "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record"
],
"severity": "info",
"metadata": {
"max-request": 1
+ },
+ "classification": {
+ "cve-id": null,
+ "cwe-id": [
+ "cwe-200"
+ ]
}
},
"type": "dns",
"host": "preprod.mission-transition-ecologique.incubateur.net.",
"matched-at": "preprod.mission-transition-ecologique.incubateur.net",
- "extracted-results": [
- "tee-preprod.osc-fr1.scalingo.io."
- ],
- "timestamp": "2025-01-26T03:11:17.64158211Z",
+ "timestamp": "2025-03-02T03:25:50.835238872Z",
"matcher-status": true
},
{
- "template": "dns/caa-fingerprint.yaml",
- "template-url": "https://templates.nuclei.sh/public/caa-fingerprint",
- "template-id": "caa-fingerprint",
- "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml",
+ "template": "dns/dns-saas-service-detection.yaml",
+ "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection",
+ "template-id": "dns-saas-service-detection",
+ "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml",
"info": {
- "name": "CAA Record",
+ "name": "DNS SaaS Service Detection",
"author": [
+ "noah @thesubtlety",
"pdteam"
],
"tags": [
"dns",
- "caa"
+ "service"
],
- "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.",
+ "description": "A CNAME DNS record was discovered",
"reference": [
- "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record"
+ "https://ns1.com/resources/cname",
+ "https://www.theregister.com/2021/02/24/dns_cname_tracking/",
+ "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/"
],
"severity": "info",
"metadata": {
"max-request": 1
- },
- "classification": {
- "cve-id": null,
- "cwe-id": [
- "cwe-200"
- ]
}
},
"type": "dns",
"host": "preprod.mission-transition-ecologique.incubateur.net.",
"matched-at": "preprod.mission-transition-ecologique.incubateur.net",
- "timestamp": "2025-01-26T03:11:17.936338973Z",
+ "extracted-results": [
+ "tee-preprod.osc-fr1.scalingo.io."
+ ],
+ "timestamp": "2025-03-02T03:25:51.222053157Z",
"matcher-status": true
},
{
@@ -73352,8 +74892,8 @@
"extracted-results": [
"apiKey:\"fake"
],
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T03:12:38.495976538Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T03:26:53.896848266Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://preprod.mission-transition-ecologique.incubateur.net'",
"matcher-status": true
},
@@ -73380,8 +74920,8 @@
"type": "http",
"host": "https://preprod.mission-transition-ecologique.incubateur.net",
"matched-at": "https://preprod.mission-transition-ecologique.incubateur.net",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T03:12:38.899213421Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T03:26:54.371986697Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://preprod.mission-transition-ecologique.incubateur.net'",
"matcher-status": true
},
@@ -73408,8 +74948,8 @@
"type": "http",
"host": "https://preprod.mission-transition-ecologique.incubateur.net",
"matched-at": "https://preprod.mission-transition-ecologique.incubateur.net",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T03:12:38.899267812Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T03:26:54.372022263Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://preprod.mission-transition-ecologique.incubateur.net'",
"matcher-status": true
},
@@ -73446,8 +74986,46 @@
"type": "http",
"host": "https://preprod.mission-transition-ecologique.incubateur.net",
"matched-at": "https://preprod.mission-transition-ecologique.incubateur.net",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T03:12:50.776290087Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T03:27:03.774406415Z",
+ "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://preprod.mission-transition-ecologique.incubateur.net'",
+ "matcher-status": true
+ },
+ {
+ "template": "http/misconfiguration/http-missing-security-headers.yaml",
+ "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers",
+ "template-id": "http-missing-security-headers",
+ "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml",
+ "info": {
+ "name": "HTTP Missing Security Headers",
+ "author": [
+ "socketz",
+ "geeknik",
+ "g4l1t0",
+ "convisoappsec",
+ "kurohost",
+ "dawid-czarnecki",
+ "forgedhallpass",
+ "jub0bs",
+ "userdehghani"
+ ],
+ "tags": [
+ "misconfig",
+ "headers",
+ "generic"
+ ],
+ "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n",
+ "severity": "info",
+ "metadata": {
+ "max-request": 1
+ }
+ },
+ "matcher-name": "cross-origin-embedder-policy",
+ "type": "http",
+ "host": "https://preprod.mission-transition-ecologique.incubateur.net",
+ "matched-at": "https://preprod.mission-transition-ecologique.incubateur.net",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T03:27:03.774443925Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://preprod.mission-transition-ecologique.incubateur.net'",
"matcher-status": true
},
@@ -73475,8 +75053,8 @@
"type": "http",
"host": "https://preprod.mission-transition-ecologique.incubateur.net",
"matched-at": "https://preprod.mission-transition-ecologique.incubateur.net/robots.txt",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T03:13:10.034330757Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T03:27:18.080059025Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://preprod.mission-transition-ecologique.incubateur.net/robots.txt'",
"matcher-status": true
},
@@ -73504,8 +75082,8 @@
"type": "http",
"host": "https://preprod.mission-transition-ecologique.incubateur.net",
"matched-at": "https://preprod.mission-transition-ecologique.incubateur.net/robots.txt",
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T03:13:10.134148552Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T03:27:18.179354303Z",
"curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://preprod.mission-transition-ecologique.incubateur.net/robots.txt'",
"matcher-status": true
},
@@ -73535,8 +75113,8 @@
"extracted-results": [
"Let's Encrypt"
],
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T03:19:40.554059598Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T03:33:35.57863871Z",
"matcher-status": true
},
{
@@ -73565,8 +75143,8 @@
"extracted-results": [
"preprod.mission-transition-ecologique.incubateur.net"
],
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T03:19:40.554208464Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T03:33:35.578781757Z",
"matcher-status": true
},
{
@@ -73596,8 +75174,8 @@
"extracted-results": [
"tls12"
],
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T03:19:41.961551968Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T03:33:37.143948191Z",
"matcher-status": true
},
{
@@ -73627,8 +75205,8 @@
"extracted-results": [
"tls13"
],
- "ip": "109.232.236.90",
- "timestamp": "2025-01-26T03:19:42.140108377Z",
+ "ip": "5.104.101.30",
+ "timestamp": "2025-03-02T03:33:37.335504959Z",
"matcher-status": true
}
],
@@ -73636,7 +75214,7 @@
{
"requestedUrl": "https://preprod.mission-transition-ecologique.incubateur.net/",
"finalUrl": "https://preprod.mission-transition-ecologique.incubateur.net/",
- "fetchTime": "2025-01-26T03:29:13.911Z",
+ "fetchTime": "2025-03-02T03:19:17.359Z",
"runWarnings": [],
"categories": {
"performance": {
@@ -73647,7 +75225,7 @@
"snapshot"
],
"id": "performance",
- "score": 0.62
+ "score": 0.63
},
"accessibility": {
"title": "Accessibility",
@@ -73668,7 +75246,7 @@
"snapshot"
],
"id": "best-practices",
- "score": 1
+ "score": 0.92
},
"seo": {
"title": "SEO",
@@ -73699,53 +75277,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 4693,
+ "numericValue": 4511,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 4693,
- "firstMeaningfulPaint": 4693,
- "largestContentfulPaint": 8218,
- "interactive": 4693,
- "speedIndex": 4693,
+ "firstContentfulPaint": 4511,
+ "firstMeaningfulPaint": 4511,
+ "largestContentfulPaint": 7962,
+ "interactive": 4511,
+ "speedIndex": 4511,
"totalBlockingTime": 0,
"maxPotentialFID": 16,
- "cumulativeLayoutShift": 0.004898301866319444,
- "cumulativeLayoutShiftMainFrame": 0.004898301866319444,
- "totalCumulativeLayoutShift": 0.004898301866319444,
+ "cumulativeLayoutShift": 0.0061984727647569435,
+ "cumulativeLayoutShiftMainFrame": 0.0061984727647569435,
+ "totalCumulativeLayoutShift": 0.0061984727647569435,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 1228784071,
+ "observedTimeOriginTs": 398989164,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 1228784071,
- "observedFirstPaint": 778,
- "observedFirstPaintTs": 1229561778,
- "observedFirstContentfulPaint": 778,
- "observedFirstContentfulPaintTs": 1229561778,
- "observedFirstContentfulPaintAllFrames": 778,
- "observedFirstContentfulPaintAllFramesTs": 1229561778,
- "observedFirstMeaningfulPaint": 778,
- "observedFirstMeaningfulPaintTs": 1229561778,
- "observedLargestContentfulPaint": 1009,
- "observedLargestContentfulPaintTs": 1229792847,
- "observedLargestContentfulPaintAllFrames": 1009,
- "observedLargestContentfulPaintAllFramesTs": 1229792847,
- "observedTraceEnd": 3478,
- "observedTraceEndTs": 1232262535,
- "observedLoad": 873,
- "observedLoadTs": 1229657309,
- "observedDomContentLoaded": 814,
- "observedDomContentLoadedTs": 1229597757,
- "observedCumulativeLayoutShift": 0.004898301866319444,
- "observedCumulativeLayoutShiftMainFrame": 0.004898301866319444,
- "observedTotalCumulativeLayoutShift": 0.004898301866319444,
- "observedFirstVisualChange": 783,
- "observedFirstVisualChangeTs": 1229567071,
- "observedLastVisualChange": 1016,
- "observedLastVisualChangeTs": 1229800071,
- "observedSpeedIndex": 915,
- "observedSpeedIndexTs": 1229698810
+ "observedNavigationStartTs": 398989164,
+ "observedFirstPaint": 832,
+ "observedFirstPaintTs": 399821535,
+ "observedFirstContentfulPaint": 832,
+ "observedFirstContentfulPaintTs": 399821535,
+ "observedFirstContentfulPaintAllFrames": 832,
+ "observedFirstContentfulPaintAllFramesTs": 399821535,
+ "observedFirstMeaningfulPaint": 832,
+ "observedFirstMeaningfulPaintTs": 399821535,
+ "observedLargestContentfulPaint": 1017,
+ "observedLargestContentfulPaintTs": 400006253,
+ "observedLargestContentfulPaintAllFrames": 1017,
+ "observedLargestContentfulPaintAllFramesTs": 400006253,
+ "observedTraceEnd": 3528,
+ "observedTraceEndTs": 402517252,
+ "observedLoad": 932,
+ "observedLoadTs": 399920997,
+ "observedDomContentLoaded": 860,
+ "observedDomContentLoadedTs": 399849640,
+ "observedCumulativeLayoutShift": 0.0061984727647569435,
+ "observedCumulativeLayoutShiftMainFrame": 0.0061984727647569435,
+ "observedTotalCumulativeLayoutShift": 0.0061984727647569435,
+ "observedFirstVisualChange": 844,
+ "observedFirstVisualChangeTs": 399833164,
+ "observedLastVisualChange": 1028,
+ "observedLastVisualChangeTs": 400017164,
+ "observedSpeedIndex": 948,
+ "observedSpeedIndexTs": 399937002
},
{
"lcpInvalidated": false
@@ -73763,23 +75341,23 @@
"type": "debugdata",
"items": [
{
- "numRequests": 74,
- "numScripts": 18,
- "numStylesheets": 4,
+ "numRequests": 94,
+ "numScripts": 34,
+ "numStylesheets": 6,
"numFonts": 3,
- "numTasks": 36,
- "numTasksOver10ms": 0,
+ "numTasks": 37,
+ "numTasksOver10ms": 1,
"numTasksOver25ms": 0,
"numTasksOver50ms": 0,
"numTasksOver100ms": 0,
"numTasksOver500ms": 0,
- "rtt": 81.797,
- "throughput": 33334322.975519042,
- "maxRtt": 82.855,
- "maxServerLatency": 342.552,
- "totalByteWeight": 1830121,
- "totalTaskTime": 3.0189999999999975,
- "mainDocumentTransferSize": 37289
+ "rtt": 84.521,
+ "throughput": 27127595.637898616,
+ "maxRtt": 85.745,
+ "maxServerLatency": 310.94599999999997,
+ "totalByteWeight": 1765840,
+ "totalTaskTime": 18.490999999999993,
+ "mainDocumentTransferSize": 42513
}
]
}
@@ -73789,7 +75367,7 @@
{
"requestedUrl": "https://preprod.mission-transition-ecologique.incubateur.net/annuaire",
"finalUrl": "https://preprod.mission-transition-ecologique.incubateur.net/aides-entreprise",
- "fetchTime": "2025-01-26T03:29:25.563Z",
+ "fetchTime": "2025-03-02T03:19:29.195Z",
"runWarnings": [
"The page may not be loading as expected because your test URL (https://preprod.mission-transition-ecologique.incubateur.net/annuaire) was redirected to https://preprod.mission-transition-ecologique.incubateur.net/aides-entreprise. Try testing the second URL directly."
],
@@ -73854,53 +75432,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 5112,
+ "numericValue": 5026,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 5112,
- "firstMeaningfulPaint": 5112,
- "largestContentfulPaint": 19287,
- "interactive": 5112,
- "speedIndex": 5651,
+ "firstContentfulPaint": 5026,
+ "firstMeaningfulPaint": 5026,
+ "largestContentfulPaint": 19076,
+ "interactive": 5026,
+ "speedIndex": 5277,
"totalBlockingTime": 0,
"maxPotentialFID": 16,
- "cumulativeLayoutShift": 0.007760349909464519,
- "cumulativeLayoutShiftMainFrame": 0.007760349909464519,
- "totalCumulativeLayoutShift": 0.007760349909464519,
+ "cumulativeLayoutShift": 0.007561083475748699,
+ "cumulativeLayoutShiftMainFrame": 0.007561083475748699,
+ "totalCumulativeLayoutShift": 0.007561083475748699,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 1240435887,
+ "observedTimeOriginTs": 410740751,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 1240435887,
- "observedFirstPaint": 1470,
- "observedFirstPaintTs": 1241905998,
- "observedFirstContentfulPaint": 1470,
- "observedFirstContentfulPaintTs": 1241905998,
- "observedFirstContentfulPaintAllFrames": 1470,
- "observedFirstContentfulPaintAllFramesTs": 1241905998,
- "observedFirstMeaningfulPaint": 1470,
- "observedFirstMeaningfulPaintTs": 1241905998,
- "observedLargestContentfulPaint": 2034,
- "observedLargestContentfulPaintTs": 1242470224,
- "observedLargestContentfulPaintAllFrames": 2034,
- "observedLargestContentfulPaintAllFramesTs": 1242470224,
- "observedTraceEnd": 4415,
- "observedTraceEndTs": 1244851268,
- "observedLoad": 1634,
- "observedLoadTs": 1242070367,
- "observedDomContentLoaded": 1549,
- "observedDomContentLoadedTs": 1241984937,
- "observedCumulativeLayoutShift": 0.007760349909464519,
- "observedCumulativeLayoutShiftMainFrame": 0.007760349909464519,
- "observedTotalCumulativeLayoutShift": 0.007760349909464519,
- "observedFirstVisualChange": 1481,
- "observedFirstVisualChangeTs": 1241916887,
- "observedLastVisualChange": 2131,
- "observedLastVisualChangeTs": 1242566887,
- "observedSpeedIndex": 1841,
- "observedSpeedIndexTs": 1242277307
+ "observedNavigationStartTs": 410740751,
+ "observedFirstPaint": 1334,
+ "observedFirstPaintTs": 412074399,
+ "observedFirstContentfulPaint": 1334,
+ "observedFirstContentfulPaintTs": 412074399,
+ "observedFirstContentfulPaintAllFrames": 1334,
+ "observedFirstContentfulPaintAllFramesTs": 412074399,
+ "observedFirstMeaningfulPaint": 1334,
+ "observedFirstMeaningfulPaintTs": 412074399,
+ "observedLargestContentfulPaint": 1746,
+ "observedLargestContentfulPaintTs": 412487033,
+ "observedLargestContentfulPaintAllFrames": 1746,
+ "observedLargestContentfulPaintAllFramesTs": 412487033,
+ "observedTraceEnd": 4275,
+ "observedTraceEndTs": 415015704,
+ "observedLoad": 1468,
+ "observedLoadTs": 412208837,
+ "observedDomContentLoaded": 1403,
+ "observedDomContentLoadedTs": 412143632,
+ "observedCumulativeLayoutShift": 0.007561083475748699,
+ "observedCumulativeLayoutShiftMainFrame": 0.007561083475748699,
+ "observedTotalCumulativeLayoutShift": 0.007561083475748699,
+ "observedFirstVisualChange": 1342,
+ "observedFirstVisualChangeTs": 412082751,
+ "observedLastVisualChange": 1976,
+ "observedLastVisualChangeTs": 412716751,
+ "observedSpeedIndex": 1614,
+ "observedSpeedIndexTs": 412354838
},
{
"lcpInvalidated": false
@@ -73918,23 +75496,23 @@
"type": "debugdata",
"items": [
{
- "numRequests": 64,
- "numScripts": 16,
- "numStylesheets": 3,
+ "numRequests": 88,
+ "numScripts": 36,
+ "numStylesheets": 5,
"numFonts": 4,
- "numTasks": 36,
- "numTasksOver10ms": 0,
+ "numTasks": 40,
+ "numTasksOver10ms": 1,
"numTasksOver25ms": 0,
"numTasksOver50ms": 0,
"numTasksOver100ms": 0,
"numTasksOver500ms": 0,
- "rtt": 81.598,
- "throughput": 43957696.883687004,
- "maxRtt": 83.47800000000001,
- "maxServerLatency": 311.888,
- "totalByteWeight": 3663545,
- "totalTaskTime": 4.942999999999999,
- "mainDocumentTransferSize": 147518
+ "rtt": 85.836,
+ "throughput": 43331919.84131933,
+ "maxRtt": 87.715,
+ "maxServerLatency": 321.44100000000003,
+ "totalByteWeight": 3644178,
+ "totalTaskTime": 14.097000000000007,
+ "mainDocumentTransferSize": 153062
}
]
}
@@ -74049,15 +75627,15 @@
"width": 1920,
"height": 1080,
"url": "https://preprod.mission-transition-ecologique.incubateur.net",
- "size": 2259.606,
- "nodes": 386,
- "requests": 51,
- "grade": "C",
- "score": 62,
- "ges": 1.76,
- "water": 2.64,
+ "size": 2564.82,
+ "nodes": 438,
+ "requests": 68,
+ "grade": "D",
+ "score": 55,
+ "ges": 1.9,
+ "water": 2.85,
"ecoindex_version": "5.4.2",
- "date": "2025-01-26 03:23:59.986110",
+ "date": "2025-03-02 03:16:41.239834",
"page_type": null
}
],
@@ -74068,6 +75646,9 @@
"summary": {
"404": 4,
"httpGrade": "A+",
+ "nmapGrade": "A",
+ "nmapOpenPortsCount": 2,
+ "nmapOpenPortsGrade": "A",
"dependabotGrade": "A",
"dependabotCount": 0,
"testsslExpireSoon": false,
@@ -74077,13 +75658,13 @@
"cookiesCount": null,
"trackersGrade": null,
"trackersCount": null,
- "zapCount": 7,
- "zapGrade": "F",
- "lighthouse_performance": 0.62,
+ "zapCount": 6,
+ "zapGrade": "D",
+ "lighthouse_performance": 0.63,
"lighthouse_performanceGrade": "C",
"lighthouse_accessibility": 0.9,
"lighthouse_accessibilityGrade": "A",
- "lighthouse_best-practices": 1,
+ "lighthouse_best-practices": 0.92,
"lighthouse_best-practicesGrade": "A",
"lighthouse_seo": 1,
"lighthouse_seoGrade": "A",
@@ -74095,7 +75676,7 @@
"declaration-a11y": "C",
"declaration-rgpd-ml": "A",
"declaration-rgpd-pc": "A",
- "ecoindexGrade": "C",
+ "ecoindexGrade": "D",
"dsfrGrade": "A"
}
},
@@ -74112,268 +75693,230 @@
"incubateur-ademe/territoires-en-transitions"
],
"http": {
- "url": "https://www.territoiresentransitions.fr",
- "algorithm_version": 3,
- "end_time": "Sun, 20 Oct 2024 03:36:52 GMT",
- "grade": "B",
- "hidden": false,
- "likelihood_indicator": "MEDIUM",
- "response_headers": {
- "CF-Cache-Status": "DYNAMIC",
- "CF-RAY": "8d55f73d78b330ad-SEA",
- "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate",
- "Connection": "keep-alive",
- "Content-Encoding": "gzip",
- "Content-Type": "text/html; charset=utf-8",
- "Date": "Sun, 20 Oct 2024 03:36:49 GMT",
- "Server": "cloudflare",
- "Transfer-Encoding": "chunked",
- "alt-svc": "h3=\":443\"; ma=86400",
- "content-security-policy": "default-src 'self'; script-src 'self' 'nonce-YTMyMTQ2MjItNmU4Yy00ZjYyLTgyNDYtNzk3N2E5ODUzNTZk' 'strict-dynamic' *.axept.io *.posthog.com client.crisp.chat *.googletagmanager.com *.adform.net https://snap.licdn.com; style-src 'self' 'unsafe-inline' client.crisp.chat; img-src 'self' blob: data: ytimg.com px.ads.linkedin.com server.adform.net https://axeptio.imgix.net https://favicons.axept.io https://image.crisp.chat https://client.crisp.chat https://px4.ads.linkedin.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self' client.crisp.chat; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://0.0.0.0:3000 *.posthog.com *.axept.io client.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat https://px.ads.linkedin.com; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com *.adform.net; block-all-mixed-content; upgrade-insecure-requests;",
- "strict-transport-security": "max-age=63072000; includeSubDomains; preload",
- "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding",
- "x-envoy-upstream-service-time": "286",
- "x-koyeb-backend": "par",
- "x-koyeb-glb": "sfo",
- "x-powered-by": "Next.js"
- },
- "scan_id": 57049388,
- "score": 75,
- "start_time": "Sun, 20 Oct 2024 03:36:48 GMT",
- "state": "FINISHED",
- "status_code": 200,
- "tests_failed": 2,
- "tests_passed": 8,
- "tests_quantity": 10,
- "details": {
+ "scan": {
+ "algorithmVersion": 4,
+ "grade": "B",
+ "error": null,
+ "score": 75,
+ "statusCode": 200,
+ "testsFailed": 2,
+ "testsPassed": 8,
+ "testsQuantity": 10,
+ "responseHeaders": {
+ "date": "Sun, 02 Mar 2025 03:27:34 GMT",
+ "content-type": "text/html; charset=utf-8",
+ "transfer-encoding": "chunked",
+ "connection": "close",
+ "strict-transport-security": "max-age=63072000; includeSubDomains; preload",
+ "content-security-policy": "default-src 'self'; script-src 'self' 'nonce-NjQ3ZTdlM2QtMjkyNC00ZWU0LTgyMGQtNzhhZmU1ODFiZDE4' 'strict-dynamic' *.axept.io *.posthog.com client.crisp.chat *.googletagmanager.com *.adform.net https://snap.licdn.com; style-src 'self' 'unsafe-inline' client.crisp.chat; img-src 'self' blob: data: ytimg.com px.ads.linkedin.com server.adform.net https://axeptio.imgix.net https://favicons.axept.io https://image.crisp.chat https://client.crisp.chat https://px4.ads.linkedin.com https://secure.adnxs.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self' client.crisp.chat; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://0.0.0.0:3000 *.posthog.com *.axept.io client.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat https://px.ads.linkedin.com; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com *.adform.net; block-all-mixed-content; upgrade-insecure-requests;",
+ "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding",
+ "x-powered-by": "Next.js",
+ "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate",
+ "x-envoy-upstream-service-time": "506",
+ "x-koyeb-backend": "par",
+ "x-koyeb-glb": "was",
+ "cf-cache-status": "DYNAMIC",
+ "server": "cloudflare",
+ "cf-ray": "919dcc8d7beb20bd-IAD",
+ "alt-svc": "h3=\":443\"; ma=86400"
+ }
+ },
+ "tests": {
"content-security-policy": {
"expectation": "csp-implemented-with-no-unsafe",
- "name": "content-security-policy",
- "output": {
- "data": {
- "base-uri": [
- "'self'"
- ],
- "block-all-mixed-content": [
- "'none'"
- ],
- "connect-src": [
- "https://rlarzronkgoyvtdkltqy.supabase.co",
- "client.crisp.chat",
- "https://phenomenal-trust-ee3da2c906.strapiapp.com",
- "wss://stream.relay.crisp.chat",
- "*.axept.io",
- "ws://0.0.0.0:3000",
- "wss://client.relay.crisp.chat",
- "'self'",
- "*.posthog.com",
- "https://px.ads.linkedin.com"
- ],
- "default-src": [
- "'self'"
- ],
- "font-src": [
- "client.crisp.chat",
- "'self'"
- ],
- "form-action": [
- "'self'"
- ],
- "frame-ancestors": [
- "'none'"
- ],
- "frame-src": [
- "www.dailymotion.com",
- "dailymotion.com",
- "youtube.com",
- "www.youtube.com",
- "*.adform.net"
- ],
- "img-src": [
- "ytimg.com",
- "https://image.crisp.chat",
- "blob:",
- "https://axeptio.imgix.net",
- "'self'",
- "https://favicons.axept.io",
- "server.adform.net",
- "https://px4.ads.linkedin.com",
- "px.ads.linkedin.com",
- "data:",
- "https://phenomenal-trust-ee3da2c906.media.strapiapp.com",
- "https://client.crisp.chat"
- ],
- "object-src": [
- "'none'"
- ],
- "script-src": [
- "'nonce-ytmymtq2mjitnmu4yy00zjyyltgyndytnzk3n2e5oduzntzk'",
- "client.crisp.chat",
- "'strict-dynamic'"
- ],
- "style-src": [
- "client.crisp.chat",
- "'unsafe-inline'",
- "'self'"
- ],
- "upgrade-insecure-requests": [
- "'none'"
- ]
- },
- "http": true,
- "meta": false,
- "numPolicies": 1,
- "policy": {
- "antiClickjacking": true,
- "defaultNone": false,
- "insecureBaseUri": false,
- "insecureFormAction": false,
- "insecureSchemeActive": false,
- "insecureSchemePassive": false,
- "strictDynamic": true,
- "unsafeEval": false,
- "unsafeInline": false,
- "unsafeInlineStyle": true,
- "unsafeObjects": false
- }
- },
"pass": true,
"result": "csp-implemented-with-unsafe-inline-in-style-src-only",
- "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": {
+ "default-src": [
+ "'self'"
+ ],
+ "script-src": [
+ "'nonce-njq3ztdlm2qtmjkync00zwu0ltgymgqtnzhhzmu1odfizde4'",
+ "'strict-dynamic'",
+ "client.crisp.chat"
+ ],
+ "style-src": [
+ "'self'",
+ "'unsafe-inline'",
+ "client.crisp.chat"
+ ],
+ "img-src": [
+ "'self'",
+ "blob:",
+ "data:",
+ "https://axeptio.imgix.net",
+ "https://client.crisp.chat",
+ "https://favicons.axept.io",
+ "https://image.crisp.chat",
+ "https://phenomenal-trust-ee3da2c906.media.strapiapp.com",
+ "https://px4.ads.linkedin.com",
+ "https://secure.adnxs.com",
+ "px.ads.linkedin.com",
+ "server.adform.net",
+ "ytimg.com"
+ ],
+ "font-src": [
+ "'self'",
+ "client.crisp.chat"
+ ],
+ "object-src": [
+ "'none'"
+ ],
+ "connect-src": [
+ "'self'",
+ "*.axept.io",
+ "*.posthog.com",
+ "client.crisp.chat",
+ "https://phenomenal-trust-ee3da2c906.strapiapp.com",
+ "https://px.ads.linkedin.com",
+ "https://rlarzronkgoyvtdkltqy.supabase.co",
+ "ws://0.0.0.0:3000",
+ "wss://client.relay.crisp.chat",
+ "wss://stream.relay.crisp.chat"
+ ],
+ "base-uri": [
+ "'self'"
+ ],
+ "form-action": [
+ "'self'"
+ ],
+ "frame-ancestors": [
+ "'none'"
+ ],
+ "frame-src": [
+ "*.adform.net",
+ "dailymotion.com",
+ "www.dailymotion.com",
+ "www.youtube.com",
+ "youtube.com"
+ ],
+ "block-all-mixed-content": [
+ "'none'"
+ ],
+ "upgrade-insecure-requests": [
+ "'none'"
+ ]
+ },
+ "http": true,
+ "meta": false,
+ "policy": {
+ "antiClickjacking": true,
+ "defaultNone": false,
+ "insecureBaseUri": false,
+ "insecureFormAction": false,
+ "insecureSchemeActive": false,
+ "insecureSchemePassive": false,
+ "strictDynamic": true,
+ "unsafeEval": false,
+ "unsafeInline": false,
+ "unsafeInlineStyle": true,
+ "unsafeObjects": false
+ },
+ "numPolicies": 1
},
"cookies": {
"expectation": "cookies-secure-with-httponly-sessions",
- "name": "cookies",
- "output": {
- "data": null,
- "sameSite": null
- },
"pass": true,
"result": "cookies-not-found",
- "score_description": "No cookies detected",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "sameSite": false
},
"cross-origin-resource-sharing": {
"expectation": "cross-origin-resource-sharing-not-implemented",
- "name": "cross-origin-resource-sharing",
- "output": {
- "data": {
- "acao": null,
- "clientaccesspolicy": null,
- "crossdomain": null
- }
- },
"pass": true,
"result": "cross-origin-resource-sharing-not-implemented",
- "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null
},
"redirection": {
"expectation": "redirection-to-https",
- "name": "redirection",
- "output": {
- "destination": "http://www.territoiresentransitions.fr/",
- "redirects": false,
- "route": [
- "http://www.territoiresentransitions.fr/"
- ],
- "status_code": 200
- },
"pass": false,
"result": "redirection-missing",
- "score_description": "Does not redirect to an HTTPS site",
- "score_modifier": -20
+ "scoreModifier": -20,
+ "destination": "http://www.territoiresentransitions.fr/",
+ "redirects": false,
+ "route": [
+ "http://www.territoiresentransitions.fr/"
+ ],
+ "statusCode": 200
},
"referrer-policy": {
"expectation": "referrer-policy-private",
- "name": "referrer-policy",
- "output": {
- "data": null,
- "http": false,
- "meta": false
- },
"pass": true,
"result": "referrer-policy-not-implemented",
- "score_description": "Referrer-Policy header not implemented",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
},
"strict-transport-security": {
"expectation": "hsts-implemented-max-age-at-least-six-months",
- "name": "strict-transport-security",
- "output": {
- "data": "max-age=63072000; includeSubDomains; preload",
- "includeSubDomains": true,
- "max-age": 63072000,
- "preload": true,
- "preloaded": false
- },
"pass": true,
"result": "hsts-implemented-max-age-at-least-six-months",
- "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": "max-age=63072000; includeSubDomains; preload",
+ "includeSubDomains": true,
+ "maxAge": 63072000,
+ "preload": true,
+ "preloaded": false
},
"subresource-integrity": {
"expectation": "sri-implemented-and-external-scripts-loaded-securely",
- "name": "subresource-integrity",
- "output": {
- "data": {}
- },
"pass": true,
"result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin",
- "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": {}
},
"x-content-type-options": {
"expectation": "x-content-type-options-nosniff",
- "name": "x-content-type-options",
- "output": {
- "data": null
- },
"pass": false,
"result": "x-content-type-options-not-implemented",
- "score_description": "X-Content-Type-Options header not implemented",
- "score_modifier": -5
+ "scoreModifier": -5,
+ "data": null
},
"x-frame-options": {
"expectation": "x-frame-options-sameorigin-or-deny",
- "name": "x-frame-options",
- "output": {
- "data": null
- },
"pass": true,
"result": "x-frame-options-implemented-via-csp",
- "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive",
- "score_modifier": 5
- },
- "x-xss-protection": {
- "expectation": "x-xss-protection-disabled",
- "name": "x-xss-protection",
- "output": {
- "data": null
- },
+ "scoreModifier": 5,
+ "data": null
+ },
+ "cross-origin-resource-policy": {
+ "expectation": "corp-implemented-with-same-site",
"pass": true,
- "result": "x-xss-protection-not-implemented",
- "score_description": "Deprecated X-XSS-Protection header not implemented",
- "score_modifier": 0
+ "result": "corp-not-implemented",
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
}
}
},
"updownio": {
"token": "mr6t",
"url": "https://www.territoiresentransitions.fr",
+ "type": "https",
"alias": "Territoires en Transitions - Web",
- "last_status": 200,
- "uptime": 99.978,
+ "uptime": 100,
"down": false,
"down_since": null,
- "up_since": "2025-01-19T19:34:26Z",
+ "up_since": "2025-02-25T05:33:11Z",
"error": null,
"period": 300,
- "apdex_t": 0.5,
"string_match": "",
"enabled": true,
"published": true,
+ "recipients": [
+ "email:2655918353"
+ ],
+ "last_check_at": "2025-03-02T03:39:02Z",
+ "next_check_at": "2025-03-02T03:44:00Z",
+ "created_at": "2023-11-26T20:01:09Z",
+ "mute_until": null,
+ "last_status": 200,
+ "apdex_t": 0.5,
"disabled_locations": [
"lan",
"mia",
@@ -74382,46 +75925,78 @@
"tok",
"syd"
],
- "recipients": [
- "email:779806134"
- ],
- "last_check_at": "2025-01-26T03:35:35Z",
- "next_check_at": "2025-01-26T03:40:33Z",
- "created_at": "2023-11-26T20:01:09Z",
- "mute_until": null,
- "favicon_url": "https://www.territoiresentransitions.fr/favicon-16x16.png",
"custom_headers": {},
+ "favicon_url": "https://www.territoiresentransitions.fr/favicon-16x16.png",
"http_verb": "GET/HEAD",
"http_body": "",
"ssl": {
- "tested_at": "2025-01-26T03:35:36Z",
- "expires_at": "2025-03-06T06:49:24Z",
+ "tested_at": "2025-03-02T03:19:09Z",
+ "expires_at": "2025-05-04T11:36:23Z",
"valid": true,
"error": null
},
"metrics": {
- "apdex": 0.929,
+ "apdex": 0.571,
"timings": {
"redirect": 0,
- "namelookup": 34,
+ "namelookup": 32,
"connection": 4,
- "handshake": 10,
- "response": 457,
- "total": 505
+ "handshake": 11,
+ "response": 968,
+ "total": 1015
}
},
"uptimeGrade": "A",
"apdexGrade": "F"
},
- "nmap": null,
+ "nmap": {
+ "host": "www.territoiresentransitions.fr",
+ "protocol": "tcp",
+ "closed_ports": "996",
+ "open_ports": [
+ {
+ "service": {
+ "name": "http",
+ "product": "Cloudflare http proxy",
+ "id": "80",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "http",
+ "product": "Cloudflare http proxy",
+ "id": "443",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "http",
+ "product": "Cloudflare http proxy",
+ "id": "8080",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "http",
+ "product": "Cloudflare http proxy",
+ "id": "8443",
+ "vulnerabilities": []
+ }
+ }
+ ],
+ "grade": "B"
+ },
"dependabot": {
- "totalCount": 28,
- "grade": "D",
+ "totalCount": 32,
+ "grade": "E",
"repositories": [
{
"url": "https://github.com/incubateur-ademe/territoires-en-transitions",
"vulnerabilityAlerts": {
- "totalCount": 28,
+ "totalCount": 32,
"nodes": [
{
"dismissedAt": null,
@@ -74858,42 +76433,6 @@
}
}
},
- {
- "dismissedAt": null,
- "createdAt": "2024-06-12T19:48:57Z",
- "securityVulnerability": {
- "severity": "HIGH",
- "package": {
- "name": "@strapi/plugin-users-permissions"
- },
- "advisory": {
- "identifiers": [
- {
- "type": "GHSA",
- "value": "GHSA-wrvh-rcmr-9qfc"
- },
- {
- "type": "CVE",
- "value": "CVE-2024-34065"
- }
- ],
- "references": [
- {
- "url": "https://github.com/strapi/strapi/security/advisories/GHSA-wrvh-rcmr-9qfc"
- },
- {
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34065"
- },
- {
- "url": "https://github.com/strapi/strapi/commit/9c79921d22142a5de77ea26151550a14e4b12669"
- },
- {
- "url": "https://github.com/advisories/GHSA-wrvh-rcmr-9qfc"
- }
- ]
- }
- }
- },
{
"dismissedAt": null,
"createdAt": "2024-06-17T21:55:23Z",
@@ -74933,99 +76472,6 @@
}
}
},
- {
- "dismissedAt": null,
- "createdAt": "2024-07-06T00:40:51Z",
- "securityVulnerability": {
- "severity": "LOW",
- "package": {
- "name": "certifi"
- },
- "advisory": {
- "identifiers": [
- {
- "type": "GHSA",
- "value": "GHSA-248v-346w-9cwc"
- },
- {
- "type": "CVE",
- "value": "CVE-2024-39689"
- }
- ],
- "references": [
- {
- "url": "https://github.com/certifi/python-certifi/security/advisories/GHSA-248v-346w-9cwc"
- },
- {
- "url": "https://github.com/certifi/python-certifi/commit/bd8153872e9c6fc98f4023df9c2deaffea2fa463"
- },
- {
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39689"
- },
- {
- "url": "https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/XpknYMPO8dI"
- },
- {
- "url": "https://security.netapp.com/advisory/ntap-20241206-0001"
- },
- {
- "url": "https://github.com/advisories/GHSA-248v-346w-9cwc"
- }
- ]
- }
- }
- },
- {
- "dismissedAt": null,
- "createdAt": "2024-08-13T00:00:46Z",
- "securityVulnerability": {
- "severity": "HIGH",
- "package": {
- "name": "axios"
- },
- "advisory": {
- "identifiers": [
- {
- "type": "GHSA",
- "value": "GHSA-8hc4-vh64-cxmj"
- },
- {
- "type": "CVE",
- "value": "CVE-2024-39338"
- }
- ],
- "references": [
- {
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39338"
- },
- {
- "url": "https://github.com/axios/axios/releases"
- },
- {
- "url": "https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.html"
- },
- {
- "url": "https://github.com/axios/axios/issues/6463"
- },
- {
- "url": "https://github.com/axios/axios/pull/6539"
- },
- {
- "url": "https://github.com/axios/axios/pull/6543"
- },
- {
- "url": "https://github.com/axios/axios/commit/6b6b605eaf73852fb2dae033f1e786155959de3a"
- },
- {
- "url": "https://github.com/axios/axios/releases/tag/v1.7.4"
- },
- {
- "url": "https://github.com/advisories/GHSA-8hc4-vh64-cxmj"
- }
- ]
- }
- }
- },
{
"dismissedAt": null,
"createdAt": "2024-08-29T04:05:12Z",
@@ -75083,60 +76529,6 @@
}
}
},
- {
- "dismissedAt": null,
- "createdAt": "2024-09-12T05:55:35Z",
- "securityVulnerability": {
- "severity": "HIGH",
- "package": {
- "name": "path-to-regexp"
- },
- "advisory": {
- "identifiers": [
- {
- "type": "GHSA",
- "value": "GHSA-9wv6-86v2-598j"
- },
- {
- "type": "CVE",
- "value": "CVE-2024-45296"
- }
- ],
- "references": [
- {
- "url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
- },
- {
- "url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
- },
- {
- "url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
- },
- {
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
- },
- {
- "url": "https://github.com/pillarjs/path-to-regexp/commit/925ac8e3c5780b02f58cbd4e52f95da8ad2ac485"
- },
- {
- "url": "https://github.com/pillarjs/path-to-regexp/commit/d31670ae8f6e69cbfd56e835742195b7d10942ef"
- },
- {
- "url": "https://github.com/pillarjs/path-to-regexp/commit/f1253b47b347dcb909e3e80b0eb2649109e59894"
- },
- {
- "url": "https://github.com/pillarjs/path-to-regexp/releases/tag/v6.3.0"
- },
- {
- "url": "https://security.netapp.com/advisory/ntap-20250124-0001"
- },
- {
- "url": "https://github.com/advisories/GHSA-9wv6-86v2-598j"
- }
- ]
- }
- }
- },
{
"dismissedAt": null,
"createdAt": "2024-10-08T07:22:39Z",
@@ -75466,48 +76858,6 @@
}
}
},
- {
- "dismissedAt": null,
- "createdAt": "2024-10-23T07:01:32Z",
- "securityVulnerability": {
- "severity": "HIGH",
- "package": {
- "name": "http-proxy-middleware"
- },
- "advisory": {
- "identifiers": [
- {
- "type": "GHSA",
- "value": "GHSA-c7qv-q95q-8v27"
- },
- {
- "type": "CVE",
- "value": "CVE-2024-21536"
- }
- ],
- "references": [
- {
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
- },
- {
- "url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
- },
- {
- "url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
- },
- {
- "url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
- },
- {
- "url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
- },
- {
- "url": "https://github.com/advisories/GHSA-c7qv-q95q-8v27"
- }
- ]
- }
- }
- },
{
"dismissedAt": null,
"createdAt": "2024-11-18T22:38:41Z",
@@ -75684,10 +77034,361 @@
]
}
}
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-04T14:53:04Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "webpack"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-4vvj-4cpr-p986"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2024-43788"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
+ },
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
+ },
+ {
+ "url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
+ },
+ {
+ "url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
+ },
+ {
+ "url": "https://scnps.co/papers/sp23_domclob.pdf"
+ },
+ {
+ "url": "https://github.com/webpack/webpack/issues/18718#issuecomment-2326296270"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-4vvj-4cpr-p986"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-10T20:40:58Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "esbuild"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-67mh-4wv8-2f99"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99"
+ },
+ {
+ "url": "https://github.com/evanw/esbuild/commit/de85afd65edec9ebc44a11e245fd9e9a2e99760d"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-67mh-4wv8-2f99"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-10T20:40:58Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "esbuild"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-67mh-4wv8-2f99"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99"
+ },
+ {
+ "url": "https://github.com/evanw/esbuild/commit/de85afd65edec9ebc44a11e245fd9e9a2e99760d"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-67mh-4wv8-2f99"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-10T20:40:59Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "esbuild"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-67mh-4wv8-2f99"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99"
+ },
+ {
+ "url": "https://github.com/evanw/esbuild/commit/de85afd65edec9ebc44a11e245fd9e9a2e99760d"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-67mh-4wv8-2f99"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-12T03:17:32Z",
+ "securityVulnerability": {
+ "severity": "LOW",
+ "package": {
+ "name": "certifi"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-248v-346w-9cwc"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2024-39689"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/certifi/python-certifi/security/advisories/GHSA-248v-346w-9cwc"
+ },
+ {
+ "url": "https://github.com/certifi/python-certifi/commit/bd8153872e9c6fc98f4023df9c2deaffea2fa463"
+ },
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39689"
+ },
+ {
+ "url": "https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/XpknYMPO8dI"
+ },
+ {
+ "url": "https://security.netapp.com/advisory/ntap-20241206-0001"
+ },
+ {
+ "url": "https://github.com/pypa/advisory-database/tree/main/vulns/certifi/PYSEC-2024-230.yaml"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-248v-346w-9cwc"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-12T20:08:43Z",
+ "securityVulnerability": {
+ "severity": "CRITICAL",
+ "package": {
+ "name": "koa"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-593f-38f6-jp5m"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2025-25200"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/koajs/koa/security/advisories/GHSA-593f-38f6-jp5m"
+ },
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-25200"
+ },
+ {
+ "url": "https://github.com/koajs/koa/commit/5054af6e31ffd451a4151a1fe144cef6e5d0d83c"
+ },
+ {
+ "url": "https://github.com/koajs/koa/commit/5f294bb1c7c8d9c61904378d250439a321bffd32"
+ },
+ {
+ "url": "https://github.com/koajs/koa/commit/93fe903fc966635a991bcf890cfc3427d33a1a08"
+ },
+ {
+ "url": "https://github.com/koajs/koa/releases/tag/2.15.4"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-593f-38f6-jp5m"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-12T20:44:19Z",
+ "securityVulnerability": {
+ "severity": "CRITICAL",
+ "package": {
+ "name": "koa"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-593f-38f6-jp5m"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2025-25200"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/koajs/koa/security/advisories/GHSA-593f-38f6-jp5m"
+ },
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-25200"
+ },
+ {
+ "url": "https://github.com/koajs/koa/commit/5054af6e31ffd451a4151a1fe144cef6e5d0d83c"
+ },
+ {
+ "url": "https://github.com/koajs/koa/commit/5f294bb1c7c8d9c61904378d250439a321bffd32"
+ },
+ {
+ "url": "https://github.com/koajs/koa/commit/93fe903fc966635a991bcf890cfc3427d33a1a08"
+ },
+ {
+ "url": "https://github.com/koajs/koa/releases/tag/2.15.4"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-593f-38f6-jp5m"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-14T19:20:56Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "dompurify"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-vhxf-7vqr-mrjg"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2025-26791"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-26791"
+ },
+ {
+ "url": "https://github.com/cure53/DOMPurify/commit/d18ffcb554e0001748865da03ac75dd7829f0f02"
+ },
+ {
+ "url": "https://ensy.zip/posts/dompurify-323-bypass"
+ },
+ {
+ "url": "https://github.com/cure53/DOMPurify/releases/tag/3.2.4"
+ },
+ {
+ "url": "https://nsysean.github.io/posts/dompurify-323-bypass"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-vhxf-7vqr-mrjg"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-14T20:29:18Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "dompurify"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-vhxf-7vqr-mrjg"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2025-26791"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-26791"
+ },
+ {
+ "url": "https://github.com/cure53/DOMPurify/commit/d18ffcb554e0001748865da03ac75dd7829f0f02"
+ },
+ {
+ "url": "https://ensy.zip/posts/dompurify-323-bypass"
+ },
+ {
+ "url": "https://github.com/cure53/DOMPurify/releases/tag/3.2.4"
+ },
+ {
+ "url": "https://nsysean.github.io/posts/dompurify-323-bypass"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-vhxf-7vqr-mrjg"
+ }
+ ]
+ }
+ }
}
]
},
- "grade": "D"
+ "grade": "E"
}
]
},
@@ -75963,7 +77664,7 @@
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "E506BDB6FFCF60D10E0998294638CD81"
+ "finding": "F43CBA9297AA6E0D1375E601417FD7EF"
},
{
"id": "cert_serialNumberLen ",
@@ -75977,21 +77678,21 @@
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "74160A768DD9F9D0AD6E839709AFBEB92D9E3BD1"
+ "finding": "FF59D198868A5A7342CC62DB4F3C86B84207E123"
},
{
"id": "cert_fingerprintSHA256 ",
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "65EE96AB8580925437FEB23F67F410D7FE5CB1493B1F9C942B0F7DD755380EC3"
+ "finding": "BDDEE62E0F3470F4ED88A79F9159CAFDE0B9175F442F168571589203A558B328"
},
{
"id": "cert ",
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName ",
@@ -76039,22 +77740,22 @@
"id": "cert_expirationStatus ",
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
- "severity": "MEDIUM",
- "finding": "expires < 60 days (39)"
+ "severity": "OK",
+ "finding": "63 >= 60 days"
},
{
"id": "cert_notBefore ",
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-06 06:49"
+ "finding": "2025-02-03 10:36"
},
{
"id": "cert_notAfter ",
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
- "severity": "MEDIUM",
- "finding": "2025-03-06 06:49"
+ "severity": "OK",
+ "finding": "2025-05-04 11:35"
},
{
"id": "cert_extlifeSpan ",
@@ -76075,14 +77776,14 @@
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "http://c.pki.goog/wr1/AJWE5X2BWuE.crl"
+ "finding": "http://c.pki.goog/wr1/kbMxXragnec.crl"
},
{
"id": "cert_ocspURL ",
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "http://o.pki.goog/s/wr1/5QY"
+ "finding": "http://o.pki.goog/s/wr1/9Dw"
},
{
"id": "OCSP_stapling ",
@@ -76264,7 +77965,7 @@
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "8BA76E775D67463E0D82D1861D43098E"
+ "finding": "9667E2800E098D85115BFAFEE91AE976"
},
{
"id": "cert_serialNumberLen ",
@@ -76278,21 +77979,21 @@
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "5ED45E287829BCE742AA1B4CBB5D144B7822501D"
+ "finding": "7B5A841439DB98B2D585B2BD922F92DA3AE29FF7"
},
{
"id": "cert_fingerprintSHA256 ",
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "35FC960917618DEC64AA467EA6302F535198F81691F5CA4F544AC590BD36BF11"
+ "finding": "A96E22D43EE5F94CA79D6ED9901C06C94D99B088FBF749E8E40C83DC837E94A5"
},
{
"id": "cert ",
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\nMIIDvzCCA2SgAwIBAgIRAIunbnddZ0Y+DYLRhh1DCY4wCgYIKoZIzj0EAwIwOzELMAkGA1UEBhMCVVMxHjAcBgNVBAoTFUdvb2dsZSBUcnVzdCBTZXJ2aWNlczEMMAoGA1UEAxMDV0UxMB4XDTI0MTIwNjA2NDkyNVoXDTI1MDMwNjA2NDkyNFowKjEoMCYGA1UEAxMfd3d3LnRlcnJpdG9pcmVzZW50cmFuc2l0aW9ucy5mcjBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABCvw3aP+KDyjaJtpqCg0ho2PrKNmUm47ptOKHipGllvWMklJ/SthXiZb3FZ3927HeEdeqDMapqFYgtZx/Ta1uQ6jggJYMIICVDAOBgNVHQ8BAf8EBAMCB4AwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkVKcZeOp7DKNN1lYgcHkOseQpiowHwYDVR0jBBgwFoAUkHeSNWfE/6jMqeZ72YB5e8yT+TgwXgYIKwYBBQUHAQEEUjBQMCcGCCsGAQUFBzABhhtodHRwOi8vby5wa2kuZ29vZy9zL3dlMS9pNmMwJQYIKwYBBQUHMAKGGWh0dHA6Ly9pLnBraS5nb29nL3dlMS5jcnQwKgYDVR0RBCMwIYIfd3d3LnRlcnJpdG9pcmVzZW50cmFuc2l0aW9ucy5mcjATBgNVHSAEDDAKMAgGBmeBDAECATA2BgNVHR8ELzAtMCugKaAnhiVodHRwOi8vYy5wa2kuZ29vZy93ZTEvQkg1aXRPVDk2RWMuY3JsMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGTmvHp5gAABAMARzBFAiEA01gMPLEsCoAXXtkZGW6eK3fHa0VntwvtZJ6s2x+x3qYCIFh/HW0OKi+p9+ZK+zF5fQKw7TCnJn89DQwEtZGQUV+wAHYAzPsPaoVxCWX+lZtTzumyfCLphVwNl422qX5UwP5MDbAAAAGTmvHqIwAABAMARzBFAiAj0wrR965DIhsuYFM5oKwtMBp7bYJ/2E6PiJVDkzvRzQIhALy3kTJR3GhkHJe8KGOa5NDopDuJJlXIuMiAMbUwQZ8EMAoGCCqGSM49BAMCA0kAMEYCIQC0Q9wcuNRr4QtXjMNGKEf1Cphxv3EQ2iz1YatxCIpkMQIhAKbTQTlWSx0/q6d99aVms8lwREqOW7VXVWX1ByhgEIc9\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName ",
@@ -76340,22 +78041,22 @@
"id": "cert_expirationStatus ",
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
- "severity": "MEDIUM",
- "finding": "expires < 60 days (39)"
+ "severity": "OK",
+ "finding": "63 >= 60 days"
},
{
"id": "cert_notBefore ",
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-06 06:49"
+ "finding": "2025-02-03 10:36"
},
{
"id": "cert_notAfter ",
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
- "severity": "MEDIUM",
- "finding": "2025-03-06 06:49"
+ "severity": "OK",
+ "finding": "2025-05-04 11:36"
},
{
"id": "cert_extlifeSpan ",
@@ -76376,14 +78077,14 @@
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "http://c.pki.goog/we1/BH5itOT96Ec.crl"
+ "finding": "http://c.pki.goog/we1/khE4z_g7LG8.crl"
},
{
"id": "cert_ocspURL ",
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "http://o.pki.goog/s/we1/i6c"
+ "finding": "http://o.pki.goog/s/we1/lmc"
},
{
"id": "OCSP_stapling ",
@@ -76551,7 +78252,7 @@
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "1737862424"
+ "finding": "1740886134"
},
{
"id": "HSTS_time",
@@ -76607,7 +78308,7 @@
"ip": "www.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
- "finding": "default-src 'self'; script-src 'self' 'nonce-MjA4NDhkOGQtNTJkMy00YzkyLTllYzYtNDU2OWQxMjAzNzAx' 'strict-dynamic' *.axept.io *.posthog.com client.crisp.chat *.googletagmanager.com *.adform.net https://snap.licdn.com; style-src 'self' 'unsafe-inline' client.crisp.chat; img-src 'self' blob: data: ytimg.com px.ads.linkedin.com server.adform.net https://axeptio.imgix.net https://favicons.axept.io https://image.crisp.chat https://client.crisp.chat https://px4.ads.linkedin.com https://secure.adnxs.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self' client.crisp.chat; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://0.0.0.0:3000 *.posthog.com *.axept.io client.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat https://px.ads.linkedin.com; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com *.adform.net; block-all-mixed-content; upgrade-insecure-requests;"
+ "finding": "default-src 'self'; script-src 'self' 'nonce-OTY0MGM1ODgtYmU4ZC00NTY1LWFhZmEtNjE5YzBjOGM1MjIw' 'strict-dynamic' *.axept.io *.posthog.com client.crisp.chat *.googletagmanager.com *.adform.net https://snap.licdn.com; style-src 'self' 'unsafe-inline' client.crisp.chat; img-src 'self' blob: data: ytimg.com px.ads.linkedin.com server.adform.net https://axeptio.imgix.net https://favicons.axept.io https://image.crisp.chat https://client.crisp.chat https://px4.ads.linkedin.com https://secure.adnxs.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self' client.crisp.chat; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://0.0.0.0:3000 *.posthog.com *.axept.io client.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat https://px.ads.linkedin.com; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com *.adform.net; block-all-mixed-content; upgrade-insecure-requests;"
},
{
"id": "Cache-Control",
@@ -76745,7 +78446,7 @@
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=65EE96AB8580925437FEB23F67F410D7FE5CB1493B1F9C942B0F7DD755380EC3"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BDDEE62E0F3470F4ED88A79F9159CAFDE0B9175F442F168571589203A558B328"
},
{
"id": "LOGJAM",
@@ -77386,7 +79087,7 @@
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "E506BDB6FFCF60D10E0998294638CD81"
+ "finding": "F43CBA9297AA6E0D1375E601417FD7EF"
},
{
"id": "cert_serialNumberLen ",
@@ -77400,21 +79101,21 @@
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "74160A768DD9F9D0AD6E839709AFBEB92D9E3BD1"
+ "finding": "FF59D198868A5A7342CC62DB4F3C86B84207E123"
},
{
"id": "cert_fingerprintSHA256 ",
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "65EE96AB8580925437FEB23F67F410D7FE5CB1493B1F9C942B0F7DD755380EC3"
+ "finding": "BDDEE62E0F3470F4ED88A79F9159CAFDE0B9175F442F168571589203A558B328"
},
{
"id": "cert ",
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\nMIIFSjCCBDKgAwIBAgIRAOUGvbb/z2DRDgmYKUY4zYEwDQYJKoZIhvcNAQELBQAwOzELMAkGA1UEBhMCVVMxHjAcBgNVBAoTFUdvb2dsZSBUcnVzdCBTZXJ2aWNlczEMMAoGA1UEAxMDV1IxMB4XDTI0MTIwNjA2NDkxNVoXDTI1MDMwNjA2NDkxNFowKjEoMCYGA1UEAxMfd3d3LnRlcnJpdG9pcmVzZW50cmFuc2l0aW9ucy5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALMSrPhIZaYLyPi2R50wdlLK0qjshfJetb1+NT8HEa4qLO8vOXxkjB+Wf1hGJumqiGtLdvSGzKZ4pXcGNVXGf2xVnbA5Q7bIjmLLKP/Fjq+viNOpiTpfsdmT4SiJc3raPnhWs8zr9oZD6HlFc1oKYxq0S5fCpAS72AXqtF2J5QEM3mnj9we+cHkLDI/XYP9g0YKhxELsyndZifdUGnm6T7Gy1+ebEYxZ39OG/Riy7Ki9NB69kfDHCM1baml5mEjsDwVbXl4q4h+tn16CV7medDjOzHp2jgvkVXN3X5YKJpgM2xkZHlrjuZ8iE0urJUqsWRVJAWrSJzmkzQgBB2KnOxECAwEAAaOCAlgwggJUMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQt042M92DuSjFA1oYMTEK0g2x4PDAfBgNVHSMEGDAWgBRmaUnU3iqckQPPiQ4kuA4wA26ILjBeBggrBgEFBQcBAQRSMFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29nL3Mvd3IxLzVRWTAlBggrBgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd3IxLmNydDAqBgNVHREEIzAhgh93d3cudGVycml0b2lyZXNlbnRyYW5zaXRpb25zLmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMDYGA1UdHwQvMC0wK6ApoCeGJWh0dHA6Ly9jLnBraS5nb29nL3dyMS9BSldFNVgyQld1RS5jcmwwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdwDm0jFjQHeMwRBBBtdxuc7B0kD2loSG+7qHMh39HjeOUAAAAZOa8cKiAAAEAwBIMEYCIQDriDFIoH6ieJbuAt+o4AuJoYblFnw18VpbEannFCy61gIhAPc7CjBgb6pZ9Agh1KWhMBekyOupaKyk6PY4KqHQYGmqAHUAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGTmvHCwAAABAMARjBEAiAkhOvrUceYHoPb1Bw0+XtqR4EJoipQehgajVORhTk1KwIgZct8GL0HurNwHoLT/hnBI2XIDGKJl/8MOfSH3Ly5ejEwDQYJKoZIhvcNAQELBQADggEBAKr4CBtRGS8AA9X9grEDb51eH2zCuLXRqCBLknzxWevnUJJftOWZe5Rep6aLYYX9H9JYUMQd9FPHBHI2HcWEWJHO7q07EtzK5wo0ZmV0jPy9UwUyKSeuAm91E0RouPQjbRu1h3Tht+yzWQcpv96WXNF3NTcD6tFlktA09R1vN9X0uzRp3HX+VzGsYSMisl7bVVLA+qJU5D+4y3bNmBRDH1m0+CyfBxvRcphdx2qTujbBisz7hzlrIQdIsyhBvdfC3gvnYHCiPdm8/QhevM/le836n9KlaknmBZr6XPsY12VxMLKmj2MZIW5CYwspYUe0/oMT/1Wjsg657WQ5QTxLO8M=\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\nMIIFTDCCBDSgAwIBAgIRAPQ8upKXqm4NE3XmAUF/1+8wDQYJKoZIhvcNAQELBQAwOzELMAkGA1UEBhMCVVMxHjAcBgNVBAoTFUdvb2dsZSBUcnVzdCBTZXJ2aWNlczEMMAoGA1UEAxMDV1IxMB4XDTI1MDIwMzEwMzYxN1oXDTI1MDUwNDExMzUxM1owKjEoMCYGA1UEAxMfd3d3LnRlcnJpdG9pcmVzZW50cmFuc2l0aW9ucy5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKRTuRDHcPoY1ZAx+jgnJ7lkIy4fyIBdYtApxAyxJdccelelxI3C0AYcmhKPuaXrx8eMAfFhbX2FwQnpT2Q/RZtY1t99XqIl6D0HPXOwbBI+sFzOr4TWrFi8r+cdyGADUJ5dNpsNj3l01/LgWbEJmZsBXk+Ea/ig+e55J04dblBgtU/WzL1s0yuEAGu0E8hokPx2+8+Ylkz32whuOokx/TkXhraatZw0VHmIjUcQoio3KSlWkou3UDyEo+ANXox33iZxatoKtuts+rvg1VVbcKSFEb25G8jTwChQlGcnBt48H92rbcLNexB3aQ3u/Um2lno7+GdsaeLGHsNe/FA+vocCAwEAAaOCAlowggJWMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRSZv+0bBL1H3xHhj5r351kletfJDAfBgNVHSMEGDAWgBRmaUnU3iqckQPPiQ4kuA4wA26ILjBeBggrBgEFBQcBAQRSMFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29nL3Mvd3IxLzlEdzAlBggrBgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd3IxLmNydDAqBgNVHREEIzAhgh93d3cudGVycml0b2lyZXNlbnRyYW5zaXRpb25zLmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMDYGA1UdHwQvMC0wK6ApoCeGJWh0dHA6Ly9jLnBraS5nb29nL3dyMS9rYk14WHJhZ25lYy5jcmwwggEGBgorBgEEAdZ5AgQCBIH3BIH0APIAdwDPEVbu1S58r/OHW9lpLpvpGnFnSrAX7KwB0lt3zsw7CAAAAZTLmNEoAAAEAwBIMEYCIQD48OicWrs41E+SG6Yl5oYUkuveAse8NE/ZEffusrRymQIhAOc6AKZi9L1EeibY2oLRGzo/8OOxxL++hevgb9dxxI6UAHcAzPsPaoVxCWX+lZtTzumyfCLphVwNl422qX5UwP5MDbAAAAGUy5jRJwAABAMASDBGAiEAk7WB0JvQErk41dHDrcRsy0A8/v/qs3KLakhLdI5gDukCIQCisoN6noLexorqj704Ur+nrzW+v52Q5bRdXWyQuHTcqzANBgkqhkiG9w0BAQsFAAOCAQEAG7zad82CGKAtvGafaN1vjraMaFditF8EUbxhyywCyINQLXGrxLOa8Vq1acJdez8FZ+G7iWGtg/xNBMSY6SJXi0XteYTN85mTkVrc699B5oxPwkvlxOXwyuhKHZuCLPRpJXmNjvZkTadtRa4+JKdqEux7x94sSaE5SJggt+cY30cuaiAps13XiAvgt3yryl8Mpd9OcBzudSZtxCdBFqzagt/UPJzds/71f3pll7SRb/Cmvgd0aV9y0njeI+45RJa57wgXhyuLNNB+sJ1CEejYlicfstQ435H2t+luWr1c7aEDK1yzQ+oDXUPTTlLGYtrOn0/5GePeaxldU07MC8lZ4g==\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName ",
@@ -77462,22 +79163,22 @@
"id": "cert_expirationStatus ",
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
- "severity": "MEDIUM",
- "finding": "expires < 60 days (39)"
+ "severity": "OK",
+ "finding": "63 >= 60 days"
},
{
"id": "cert_notBefore ",
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-06 06:49"
+ "finding": "2025-02-03 10:36"
},
{
"id": "cert_notAfter ",
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
- "severity": "MEDIUM",
- "finding": "2025-03-06 06:49"
+ "severity": "OK",
+ "finding": "2025-05-04 11:35"
},
{
"id": "cert_extlifeSpan ",
@@ -77498,14 +79199,14 @@
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "http://c.pki.goog/wr1/AJWE5X2BWuE.crl"
+ "finding": "http://c.pki.goog/wr1/kbMxXragnec.crl"
},
{
"id": "cert_ocspURL ",
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "http://o.pki.goog/s/wr1/5QY"
+ "finding": "http://o.pki.goog/s/wr1/9Dw"
},
{
"id": "OCSP_stapling ",
@@ -77687,7 +79388,7 @@
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "8BA76E775D67463E0D82D1861D43098E"
+ "finding": "9667E2800E098D85115BFAFEE91AE976"
},
{
"id": "cert_serialNumberLen ",
@@ -77701,21 +79402,21 @@
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "5ED45E287829BCE742AA1B4CBB5D144B7822501D"
+ "finding": "7B5A841439DB98B2D585B2BD922F92DA3AE29FF7"
},
{
"id": "cert_fingerprintSHA256 ",
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "35FC960917618DEC64AA467EA6302F535198F81691F5CA4F544AC590BD36BF11"
+ "finding": "A96E22D43EE5F94CA79D6ED9901C06C94D99B088FBF749E8E40C83DC837E94A5"
},
{
"id": "cert ",
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName ",
@@ -77763,22 +79464,22 @@
"id": "cert_expirationStatus ",
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
- "severity": "MEDIUM",
- "finding": "expires < 60 days (39)"
+ "severity": "OK",
+ "finding": "63 >= 60 days"
},
{
"id": "cert_notBefore ",
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-06 06:49"
+ "finding": "2025-02-03 10:36"
},
{
"id": "cert_notAfter ",
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
- "severity": "MEDIUM",
- "finding": "2025-03-06 06:49"
+ "severity": "OK",
+ "finding": "2025-05-04 11:36"
},
{
"id": "cert_extlifeSpan ",
@@ -77799,14 +79500,14 @@
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "http://c.pki.goog/we1/BH5itOT96Ec.crl"
+ "finding": "http://c.pki.goog/we1/khE4z_g7LG8.crl"
},
{
"id": "cert_ocspURL ",
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "http://o.pki.goog/s/we1/i6c"
+ "finding": "http://o.pki.goog/s/we1/lmc"
},
{
"id": "OCSP_stapling ",
@@ -77974,7 +79675,7 @@
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "1737862480"
+ "finding": "1740886193"
},
{
"id": "HSTS_time",
@@ -78030,7 +79731,7 @@
"ip": "www.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "OK",
- "finding": "default-src 'self'; script-src 'self' 'nonce-MTYxMzc2OWItMzRmZS00NDdiLThlMGItMTE3M2E4ZTIzOWFl' 'strict-dynamic' *.axept.io *.posthog.com client.crisp.chat *.googletagmanager.com *.adform.net https://snap.licdn.com; style-src 'self' 'unsafe-inline' client.crisp.chat; img-src 'self' blob: data: ytimg.com px.ads.linkedin.com server.adform.net https://axeptio.imgix.net https://favicons.axept.io https://image.crisp.chat https://client.crisp.chat https://px4.ads.linkedin.com https://secure.adnxs.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self' client.crisp.chat; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://0.0.0.0:3000 *.posthog.com *.axept.io client.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat https://px.ads.linkedin.com; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com *.adform.net; block-all-mixed-content; upgrade-insecure-requests;"
+ "finding": "default-src 'self'; script-src 'self' 'nonce-M2JjYjYyOWMtNjExYy00ZmMzLTg3OGQtODQwY2ViOGUzMDVk' 'strict-dynamic' *.axept.io *.posthog.com client.crisp.chat *.googletagmanager.com *.adform.net https://snap.licdn.com; style-src 'self' 'unsafe-inline' client.crisp.chat; img-src 'self' blob: data: ytimg.com px.ads.linkedin.com server.adform.net https://axeptio.imgix.net https://favicons.axept.io https://image.crisp.chat https://client.crisp.chat https://px4.ads.linkedin.com https://secure.adnxs.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self' client.crisp.chat; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://0.0.0.0:3000 *.posthog.com *.axept.io client.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat https://px.ads.linkedin.com; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com *.adform.net; block-all-mixed-content; upgrade-insecure-requests;"
},
{
"id": "Cache-Control",
@@ -78168,7 +79869,7 @@
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=65EE96AB8580925437FEB23F67F410D7FE5CB1493B1F9C942B0F7DD755380EC3"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BDDEE62E0F3470F4ED88A79F9159CAFDE0B9175F442F168571589203A558B328"
},
{
"id": "LOGJAM",
@@ -78746,7 +80447,7 @@
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "supported"
+ "finding": "not supported"
},
{
"id": "TLS_timestamp",
@@ -78809,7 +80510,7 @@
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "E506BDB6FFCF60D10E0998294638CD81"
+ "finding": "F43CBA9297AA6E0D1375E601417FD7EF"
},
{
"id": "cert_serialNumberLen ",
@@ -78823,21 +80524,21 @@
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "74160A768DD9F9D0AD6E839709AFBEB92D9E3BD1"
+ "finding": "FF59D198868A5A7342CC62DB4F3C86B84207E123"
},
{
"id": "cert_fingerprintSHA256 ",
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "65EE96AB8580925437FEB23F67F410D7FE5CB1493B1F9C942B0F7DD755380EC3"
+ "finding": "BDDEE62E0F3470F4ED88A79F9159CAFDE0B9175F442F168571589203A558B328"
},
{
"id": "cert ",
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName ",
@@ -78885,22 +80586,22 @@
"id": "cert_expirationStatus ",
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
- "severity": "MEDIUM",
- "finding": "expires < 60 days (39)"
+ "severity": "OK",
+ "finding": "63 >= 60 days"
},
{
"id": "cert_notBefore ",
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-06 06:49"
+ "finding": "2025-02-03 10:36"
},
{
"id": "cert_notAfter ",
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
- "severity": "MEDIUM",
- "finding": "2025-03-06 06:49"
+ "severity": "OK",
+ "finding": "2025-05-04 11:35"
},
{
"id": "cert_extlifeSpan ",
@@ -78921,14 +80622,14 @@
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "http://c.pki.goog/wr1/AJWE5X2BWuE.crl"
+ "finding": "http://c.pki.goog/wr1/kbMxXragnec.crl"
},
{
"id": "cert_ocspURL ",
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "http://o.pki.goog/s/wr1/5QY"
+ "finding": "http://o.pki.goog/s/wr1/9Dw"
},
{
"id": "OCSP_stapling ",
@@ -79110,7 +80811,7 @@
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "8BA76E775D67463E0D82D1861D43098E"
+ "finding": "9667E2800E098D85115BFAFEE91AE976"
},
{
"id": "cert_serialNumberLen ",
@@ -79124,21 +80825,21 @@
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "5ED45E287829BCE742AA1B4CBB5D144B7822501D"
+ "finding": "7B5A841439DB98B2D585B2BD922F92DA3AE29FF7"
},
{
"id": "cert_fingerprintSHA256 ",
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "35FC960917618DEC64AA467EA6302F535198F81691F5CA4F544AC590BD36BF11"
+ "finding": "A96E22D43EE5F94CA79D6ED9901C06C94D99B088FBF749E8E40C83DC837E94A5"
},
{
"id": "cert ",
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\nMIIDvTCCA2OgAwIBAgIRAJZn4oAOCY2FEVv6/uka6XYwCgYIKoZIzj0EAwIwOzELMAkGA1UEBhMCVVMxHjAcBgNVBAoTFUdvb2dsZSBUcnVzdCBTZXJ2aWNlczEMMAoGA1UEAxMDV0UxMB4XDTI1MDIwMzEwMzYyNVoXDTI1MDUwNDExMzYyM1owKjEoMCYGA1UEAxMfd3d3LnRlcnJpdG9pcmVzZW50cmFuc2l0aW9ucy5mcjBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABHxJZOciUGRc7szn5yDZN6GV9B698rFI6f9HY1NDjCfsPkk3fEpxTYJJU3vR73ccaS3Xm2Ix4jBt9TRMpwtl8W6jggJXMIICUzAOBgNVHQ8BAf8EBAMCB4AwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUymFvQNQ6krUGkbXa3P9ks8S4ixgwHwYDVR0jBBgwFoAUkHeSNWfE/6jMqeZ72YB5e8yT+TgwXgYIKwYBBQUHAQEEUjBQMCcGCCsGAQUFBzABhhtodHRwOi8vby5wa2kuZ29vZy9zL3dlMS9sbWMwJQYIKwYBBQUHMAKGGWh0dHA6Ly9pLnBraS5nb29nL3dlMS5jcnQwKgYDVR0RBCMwIYIfd3d3LnRlcnJpdG9pcmVzZW50cmFuc2l0aW9ucy5mcjATBgNVHSAEDDAKMAgGBmeBDAECATA2BgNVHR8ELzAtMCugKaAnhiVodHRwOi8vYy5wa2kuZ29vZy93ZTEva2hFNHpfZzdMRzguY3JsMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGUy5jxSgAABAMARjBEAiAi9XF1d2WeW+8NUBQ5A9aXh99B0pZgb/3tas8nHiQFggIgH0VORk6KuqW8RcygybnfSKGhl6dbS1TyDtvyQgwug6YAdgB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAZTLmPFoAAAEAwBHMEUCIQCX8AP7F8ak9/C91ifE4P1/LkuIFzkKAZsWAbIb+p17rQIgEj9xwULHMkyVYnh8QAV16aICgDc9IpPolzuW1NVEAQswCgYIKoZIzj0EAwIDSAAwRQIgap4oHrqBsWWZqkTlJf29nFsDnSdiGe+lHKcb49XptoMCIQCbEUrGJqWisU5yUNZDOgtl16aHJPfeFkO+VqIUgMtvAg==\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName ",
@@ -79186,22 +80887,22 @@
"id": "cert_expirationStatus ",
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
- "severity": "MEDIUM",
- "finding": "expires < 60 days (39)"
+ "severity": "OK",
+ "finding": "63 >= 60 days"
},
{
"id": "cert_notBefore ",
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-06 06:49"
+ "finding": "2025-02-03 10:36"
},
{
"id": "cert_notAfter ",
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
- "severity": "MEDIUM",
- "finding": "2025-03-06 06:49"
+ "severity": "OK",
+ "finding": "2025-05-04 11:36"
},
{
"id": "cert_extlifeSpan ",
@@ -79222,14 +80923,14 @@
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "http://c.pki.goog/we1/BH5itOT96Ec.crl"
+ "finding": "http://c.pki.goog/we1/khE4z_g7LG8.crl"
},
{
"id": "cert_ocspURL ",
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "http://o.pki.goog/s/we1/i6c"
+ "finding": "http://o.pki.goog/s/we1/lmc"
},
{
"id": "OCSP_stapling ",
@@ -79397,7 +81098,7 @@
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "1737862536"
+ "finding": "1740886258"
},
{
"id": "HSTS_time",
@@ -79453,7 +81154,7 @@
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
- "finding": "default-src 'self'; script-src 'self' 'nonce-Njc4OTlhYzYtODE5NC00ZTU1LWE0Y2ItZjI4Y2JmOWUzNTc3' 'strict-dynamic' *.axept.io *.posthog.com client.crisp.chat *.googletagmanager.com *.adform.net https://snap.licdn.com; style-src 'self' 'unsafe-inline' client.crisp.chat; img-src 'self' blob: data: ytimg.com px.ads.linkedin.com server.adform.net https://axeptio.imgix.net https://favicons.axept.io https://image.crisp.chat https://client.crisp.chat https://px4.ads.linkedin.com https://secure.adnxs.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self' client.crisp.chat; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://0.0.0.0:3000 *.posthog.com *.axept.io client.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat https://px.ads.linkedin.com; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com *.adform.net; block-all-mixed-content; upgrade-insecure-requests;"
+ "finding": "default-src 'self'; script-src 'self' 'nonce-ZWRjMmI3MjUtYjhhZS00ODE0LWI3MjItZmRlN2M3MDcxMjE0' 'strict-dynamic' *.axept.io *.posthog.com client.crisp.chat *.googletagmanager.com *.adform.net https://snap.licdn.com; style-src 'self' 'unsafe-inline' client.crisp.chat; img-src 'self' blob: data: ytimg.com px.ads.linkedin.com server.adform.net https://axeptio.imgix.net https://favicons.axept.io https://image.crisp.chat https://client.crisp.chat https://px4.ads.linkedin.com https://secure.adnxs.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self' client.crisp.chat; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://0.0.0.0:3000 *.posthog.com *.axept.io client.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat https://px.ads.linkedin.com; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com *.adform.net; block-all-mixed-content; upgrade-insecure-requests;"
},
{
"id": "Cache-Control",
@@ -79591,7 +81292,7 @@
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=65EE96AB8580925437FEB23F67F410D7FE5CB1493B1F9C942B0F7DD755380EC3"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BDDEE62E0F3470F4ED88A79F9159CAFDE0B9175F442F168571589203A558B328"
},
{
"id": "LOGJAM",
@@ -79967,7 +81668,7 @@
"ip": "www.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "172"
+ "finding": "188"
}
],
"thirdparties": {
@@ -80040,7 +81741,7 @@
"name": "Next.js",
"description": "Next.js is a React framework for developing single page Javascript applications.",
"confidence": 100,
- "version": "14.2.16",
+ "version": "14.2.21",
"icon": "Next.js.svg",
"website": "https://nextjs.org",
"cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*",
@@ -80086,24 +81787,6 @@
],
"rootPath": true
},
- {
- "slug": "priority-hints",
- "name": "Priority Hints",
- "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.",
- "confidence": 100,
- "version": null,
- "icon": "Priority Hints.svg",
- "website": "https://wicg.github.io/priority-hints/",
- "cpe": null,
- "categories": [
- {
- "id": 92,
- "slug": "performance",
- "name": "Performance"
- }
- ],
- "rootPath": true
- },
{
"slug": "linkedin-insight-tag",
"name": "Linkedin Insight Tag",
@@ -80273,7 +81956,7 @@
"zap": {
"@programName": "ZAP",
"@version": "2.16.0",
- "@generated": "Sun, 26 Jan 2025 03:27:47",
+ "@generated": "Sun, 2 Mar 2025 03:26:44",
"site": [
{
"@name": "https://www.territoiresentransitions.fr",
@@ -81020,7 +82703,7 @@
{
"requestedUrl": "https://www.territoiresentransitions.fr/",
"finalUrl": "https://www.territoiresentransitions.fr/",
- "fetchTime": "2025-01-26T03:33:09.806Z",
+ "fetchTime": "2025-03-02T03:27:00.675Z",
"runWarnings": [],
"categories": {
"performance": {
@@ -81031,7 +82714,7 @@
"snapshot"
],
"id": "performance",
- "score": 0.62
+ "score": 0.6
},
"accessibility": {
"title": "Accessibility",
@@ -81083,53 +82766,53 @@
"description": "Collects all available metrics.",
"score": null,
"scoreDisplayMode": "informative",
- "numericValue": 4928,
+ "numericValue": 10321,
"numericUnit": "millisecond",
"details": {
"type": "debugdata",
"items": [
{
- "firstContentfulPaint": 2508,
- "firstMeaningfulPaint": 2508,
- "largestContentfulPaint": 9122,
- "interactive": 4928,
- "speedIndex": 2702,
- "totalBlockingTime": 134,
- "maxPotentialFID": 313,
- "cumulativeLayoutShift": 0.20297193230523003,
- "cumulativeLayoutShiftMainFrame": 0.20297193230523003,
- "totalCumulativeLayoutShift": 0.20297193230523003,
+ "firstContentfulPaint": 2704,
+ "firstMeaningfulPaint": 2704,
+ "largestContentfulPaint": 6439,
+ "interactive": 10321,
+ "speedIndex": 3137,
+ "totalBlockingTime": 241,
+ "maxPotentialFID": 150,
+ "cumulativeLayoutShift": 0.034533413357204855,
+ "cumulativeLayoutShiftMainFrame": 0.034533413357204855,
+ "totalCumulativeLayoutShift": 0.034533413357204855,
"observedTimeOrigin": 0,
- "observedTimeOriginTs": 1106750811,
+ "observedTimeOriginTs": 325574693,
"observedNavigationStart": 0,
- "observedNavigationStartTs": 1106750811,
- "observedFirstPaint": 740,
- "observedFirstPaintTs": 1107490949,
- "observedFirstContentfulPaint": 740,
- "observedFirstContentfulPaintTs": 1107490949,
- "observedFirstContentfulPaintAllFrames": 740,
- "observedFirstContentfulPaintAllFramesTs": 1107490949,
- "observedFirstMeaningfulPaint": 740,
- "observedFirstMeaningfulPaintTs": 1107490949,
- "observedLargestContentfulPaint": 1024,
- "observedLargestContentfulPaintTs": 1107774626,
- "observedLargestContentfulPaintAllFrames": 1024,
- "observedLargestContentfulPaintAllFramesTs": 1107774626,
- "observedTraceEnd": 3803,
- "observedTraceEndTs": 1110553734,
- "observedLoad": 1212,
- "observedLoadTs": 1107962389,
- "observedDomContentLoaded": 736,
- "observedDomContentLoadedTs": 1107487028,
- "observedCumulativeLayoutShift": 0.20297193230523003,
- "observedCumulativeLayoutShiftMainFrame": 0.20297193230523003,
- "observedTotalCumulativeLayoutShift": 0.20297193230523003,
- "observedFirstVisualChange": 738,
- "observedFirstVisualChangeTs": 1107488811,
- "observedLastVisualChange": 1038,
- "observedLastVisualChangeTs": 1107788811,
- "observedSpeedIndex": 944,
- "observedSpeedIndexTs": 1107695190
+ "observedNavigationStartTs": 325574693,
+ "observedFirstPaint": 1099,
+ "observedFirstPaintTs": 326673602,
+ "observedFirstContentfulPaint": 1099,
+ "observedFirstContentfulPaintTs": 326673602,
+ "observedFirstContentfulPaintAllFrames": 1099,
+ "observedFirstContentfulPaintAllFramesTs": 326673602,
+ "observedFirstMeaningfulPaint": 1099,
+ "observedFirstMeaningfulPaintTs": 326673602,
+ "observedLargestContentfulPaint": 1099,
+ "observedLargestContentfulPaintTs": 326673602,
+ "observedLargestContentfulPaintAllFrames": 1099,
+ "observedLargestContentfulPaintAllFramesTs": 326673602,
+ "observedTraceEnd": 3874,
+ "observedTraceEndTs": 329448688,
+ "observedLoad": 1430,
+ "observedLoadTs": 327005027,
+ "observedDomContentLoaded": 1082,
+ "observedDomContentLoadedTs": 326656618,
+ "observedCumulativeLayoutShift": 0.034533413357204855,
+ "observedCumulativeLayoutShiftMainFrame": 0.034533413357204855,
+ "observedTotalCumulativeLayoutShift": 0.034533413357204855,
+ "observedFirstVisualChange": 1112,
+ "observedFirstVisualChangeTs": 326686693,
+ "observedLastVisualChange": 1495,
+ "observedLastVisualChangeTs": 327069693,
+ "observedSpeedIndex": 1129,
+ "observedSpeedIndexTs": 326703765
},
{
"lcpInvalidated": false
@@ -81147,23 +82830,23 @@
"type": "debugdata",
"items": [
{
- "numRequests": 82,
- "numScripts": 23,
+ "numRequests": 47,
+ "numScripts": 22,
"numStylesheets": 5,
"numFonts": 5,
- "numTasks": 1331,
- "numTasksOver10ms": 5,
- "numTasksOver25ms": 2,
- "numTasksOver50ms": 1,
+ "numTasks": 954,
+ "numTasksOver10ms": 7,
+ "numTasksOver25ms": 5,
+ "numTasksOver50ms": 0,
"numTasksOver100ms": 0,
"numTasksOver500ms": 0,
- "rtt": 2.2569999999999997,
- "throughput": 207297233.42882863,
- "maxRtt": 2.354000000000001,
- "maxServerLatency": 129.053,
- "totalByteWeight": 4235671,
- "totalTaskTime": 366.05399999999844,
- "mainDocumentTransferSize": 38168
+ "rtt": 5.908999999999999,
+ "throughput": 15125120.910952,
+ "maxRtt": 6.978,
+ "maxServerLatency": 264.288,
+ "totalByteWeight": 1508935,
+ "totalTaskTime": 322.5589999999983,
+ "mainDocumentTransferSize": 37880
}
]
}
@@ -81284,15 +82967,15 @@
"width": 1920,
"height": 1080,
"url": "https://www.territoiresentransitions.fr",
- "size": 30254.707,
- "nodes": 380,
- "requests": 74,
+ "size": 4392.024,
+ "nodes": 384,
+ "requests": 76,
"grade": "D",
- "score": 52,
- "ges": 1.96,
- "water": 2.94,
+ "score": 53,
+ "ges": 1.94,
+ "water": 2.91,
"ecoindex_version": "5.4.2",
- "date": "2025-01-26 03:28:57.075872",
+ "date": "2025-03-02 03:24:50.318922",
"page_type": "website"
}
],
@@ -81303,12 +82986,15 @@
"summary": {
"404": "A+",
"httpGrade": "B",
- "apdex": 0.929,
+ "apdex": 0.571,
"apdexGrade": "F",
- "uptime": 99.978,
+ "uptime": 100,
"uptimeGrade": "A",
- "dependabotGrade": "D",
- "dependabotCount": 28,
+ "nmapGrade": "B",
+ "nmapOpenPortsCount": 4,
+ "nmapOpenPortsGrade": "F",
+ "dependabotGrade": "E",
+ "dependabotCount": 32,
"testsslExpireSoon": null,
"testsslExpireDate": null,
"testsslGrade": "A+",
@@ -81318,7 +83004,7 @@
"trackersCount": null,
"zapCount": 7,
"zapGrade": "D",
- "lighthouse_performance": 0.62,
+ "lighthouse_performance": 0.6,
"lighthouse_performanceGrade": "C",
"lighthouse_accessibility": 0.93,
"lighthouse_accessibilityGrade": "A",
@@ -81351,186 +83037,146 @@
"incubateur-ademe/territoires-en-transitions"
],
"http": {
- "url": "https://app.territoiresentransitions.fr",
- "algorithm_version": 3,
- "end_time": "Sun, 20 Oct 2024 03:39:39 GMT",
- "grade": "F",
- "hidden": false,
- "likelihood_indicator": "MEDIUM",
- "response_headers": {
- "CF-Cache-Status": "DYNAMIC",
- "CF-RAY": "8d55fb59eaa475a2-SEA",
- "Cache-Control": "public, max-age=0",
- "Connection": "keep-alive",
- "Content-Encoding": "gzip",
- "Content-Type": "text/html; charset=UTF-8",
- "Date": "Sun, 20 Oct 2024 03:39:38 GMT",
- "Server": "cloudflare",
- "Transfer-Encoding": "chunked",
- "alt-svc": "h3=\":443\"; ma=86400",
- "etag": "W/\"fb5-19295e323c0\"",
- "last-modified": "Wed, 16 Oct 2024 15:12:24 GMT",
- "x-envoy-upstream-service-time": "144",
- "x-koyeb-backend": "par",
- "x-koyeb-glb": "sfo",
- "x-powered-by": "Express"
- },
- "scan_id": 57049427,
- "score": 10,
- "start_time": "Sun, 20 Oct 2024 03:39:37 GMT",
- "state": "FINISHED",
- "status_code": 200,
- "tests_failed": 5,
- "tests_passed": 5,
- "tests_quantity": 10,
- "details": {
+ "scan": {
+ "algorithmVersion": 4,
+ "grade": "F",
+ "error": null,
+ "score": 10,
+ "statusCode": 200,
+ "testsFailed": 5,
+ "testsPassed": 5,
+ "testsQuantity": 10,
+ "responseHeaders": {
+ "date": "Sun, 02 Mar 2025 03:31:49 GMT",
+ "content-type": "text/html; charset=utf-8",
+ "transfer-encoding": "chunked",
+ "connection": "close",
+ "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding",
+ "x-powered-by": "Next.js",
+ "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate",
+ "x-envoy-upstream-service-time": "200",
+ "x-koyeb-backend": "par",
+ "x-koyeb-glb": "was",
+ "cf-cache-status": "DYNAMIC",
+ "server": "cloudflare",
+ "cf-ray": "919dd2c92bfa9c31-IAD",
+ "alt-svc": "h3=\":443\"; ma=86400"
+ }
+ },
+ "tests": {
"content-security-policy": {
"expectation": "csp-implemented-with-no-unsafe",
- "name": "content-security-policy",
- "output": {
- "data": null,
- "http": false,
- "meta": false,
- "numPolicies": 0,
- "policy": null
- },
"pass": false,
"result": "csp-not-implemented",
- "score_description": "Content Security Policy (CSP) header not implemented",
- "score_modifier": -25
+ "scoreModifier": -25,
+ "data": null,
+ "http": false,
+ "meta": false,
+ "policy": null,
+ "numPolicies": 0
},
"cookies": {
"expectation": "cookies-secure-with-httponly-sessions",
- "name": "cookies",
- "output": {
- "data": null,
- "sameSite": null
- },
"pass": true,
"result": "cookies-not-found",
- "score_description": "No cookies detected",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "sameSite": false
},
"cross-origin-resource-sharing": {
"expectation": "cross-origin-resource-sharing-not-implemented",
- "name": "cross-origin-resource-sharing",
- "output": {
- "data": {
- "acao": null,
- "clientaccesspolicy": null,
- "crossdomain": null
- }
- },
"pass": true,
"result": "cross-origin-resource-sharing-not-implemented",
- "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null
},
"redirection": {
"expectation": "redirection-to-https",
- "name": "redirection",
- "output": {
- "destination": "http://app.territoiresentransitions.fr/",
- "redirects": false,
- "route": [
- "http://app.territoiresentransitions.fr/"
- ],
- "status_code": 200
- },
"pass": false,
"result": "redirection-missing",
- "score_description": "Does not redirect to an HTTPS site",
- "score_modifier": -20
+ "scoreModifier": -20,
+ "destination": "http://app.territoiresentransitions.fr/",
+ "redirects": false,
+ "route": [
+ "http://app.territoiresentransitions.fr/"
+ ],
+ "statusCode": 200
},
"referrer-policy": {
"expectation": "referrer-policy-private",
- "name": "referrer-policy",
- "output": {
- "data": null,
- "http": false,
- "meta": false
- },
"pass": true,
"result": "referrer-policy-not-implemented",
- "score_description": "Referrer-Policy header not implemented",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
},
"strict-transport-security": {
"expectation": "hsts-implemented-max-age-at-least-six-months",
- "name": "strict-transport-security",
- "output": {
- "data": null,
- "includeSubDomains": false,
- "max-age": null,
- "preload": false,
- "preloaded": false
- },
"pass": false,
"result": "hsts-not-implemented",
- "score_description": "HTTP Strict Transport Security (HSTS) header not implemented",
- "score_modifier": -20
+ "scoreModifier": -20,
+ "data": null,
+ "includeSubDomains": false,
+ "maxAge": null,
+ "preload": false,
+ "preloaded": false
},
"subresource-integrity": {
"expectation": "sri-implemented-and-external-scripts-loaded-securely",
- "name": "subresource-integrity",
- "output": {
- "data": {}
- },
"pass": true,
"result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin",
- "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin",
- "score_modifier": 0
+ "scoreModifier": 0,
+ "data": {}
},
"x-content-type-options": {
"expectation": "x-content-type-options-nosniff",
- "name": "x-content-type-options",
- "output": {
- "data": null
- },
"pass": false,
"result": "x-content-type-options-not-implemented",
- "score_description": "X-Content-Type-Options header not implemented",
- "score_modifier": -5
+ "scoreModifier": -5,
+ "data": null
},
"x-frame-options": {
"expectation": "x-frame-options-sameorigin-or-deny",
- "name": "x-frame-options",
- "output": {
- "data": null
- },
"pass": false,
"result": "x-frame-options-not-implemented",
- "score_description": "X-Frame-Options (XFO) header not implemented",
- "score_modifier": -20
- },
- "x-xss-protection": {
- "expectation": "x-xss-protection-disabled",
- "name": "x-xss-protection",
- "output": {
- "data": null
- },
+ "scoreModifier": -20,
+ "data": null
+ },
+ "cross-origin-resource-policy": {
+ "expectation": "corp-implemented-with-same-site",
"pass": true,
- "result": "x-xss-protection-not-implemented",
- "score_description": "Deprecated X-XSS-Protection header not implemented",
- "score_modifier": 0
+ "result": "corp-not-implemented",
+ "scoreModifier": 0,
+ "data": null,
+ "http": false,
+ "meta": false
}
}
},
"updownio": {
"token": "7vdk",
"url": "https://app.territoiresentransitions.fr",
+ "type": "https",
"alias": "Territoires en Transitions - App",
- "last_status": 200,
- "uptime": 99.978,
+ "uptime": 100,
"down": false,
"down_since": null,
"up_since": "2025-01-11T17:42:58Z",
"error": null,
"period": 300,
- "apdex_t": 0.5,
"string_match": "",
"enabled": true,
"published": true,
+ "recipients": [
+ "email:2655918353"
+ ],
+ "last_check_at": "2025-03-02T03:44:00Z",
+ "next_check_at": "2025-03-02T03:48:59Z",
+ "created_at": "2023-11-26T20:01:24Z",
+ "mute_until": null,
+ "last_status": 200,
+ "apdex_t": 0.5,
"disabled_locations": [
"lan",
"mia",
@@ -81539,46 +83185,78 @@
"tok",
"syd"
],
- "recipients": [
- "email:779806134"
- ],
- "last_check_at": "2025-01-26T03:42:26Z",
- "next_check_at": "2025-01-26T03:47:24Z",
- "created_at": "2023-11-26T20:01:24Z",
- "mute_until": null,
- "favicon_url": "https://app.territoiresentransitions.fr/favicon-32x32.png",
"custom_headers": {},
+ "favicon_url": "https://app.territoiresentransitions.fr/favicon-32x32.png",
"http_verb": "GET/HEAD",
"http_body": "",
"ssl": {
- "tested_at": "2025-01-26T03:17:35Z",
- "expires_at": "2025-03-06T04:02:49Z",
+ "tested_at": "2025-03-02T03:19:09Z",
+ "expires_at": "2025-05-04T05:23:36Z",
"valid": true,
"error": null
},
"metrics": {
- "apdex": 0.98,
+ "apdex": 1,
"timings": {
"redirect": 0,
- "namelookup": 28,
- "connection": 5,
+ "namelookup": 12,
+ "connection": 4,
"handshake": 10,
- "response": 118,
- "total": 161
+ "response": 174,
+ "total": 201
}
},
"uptimeGrade": "A",
- "apdexGrade": "C"
+ "apdexGrade": "A"
+ },
+ "nmap": {
+ "host": "app.territoiresentransitions.fr",
+ "protocol": "tcp",
+ "closed_ports": "996",
+ "open_ports": [
+ {
+ "service": {
+ "name": "http",
+ "product": "Cloudflare http proxy",
+ "id": "80",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "http",
+ "product": "Cloudflare http proxy",
+ "id": "443",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "http",
+ "product": "Cloudflare http proxy",
+ "id": "8080",
+ "vulnerabilities": []
+ }
+ },
+ {
+ "service": {
+ "name": "http",
+ "product": "Cloudflare http proxy",
+ "id": "8443",
+ "vulnerabilities": []
+ }
+ }
+ ],
+ "grade": "B"
},
- "nmap": null,
"dependabot": {
- "totalCount": 28,
- "grade": "D",
+ "totalCount": 32,
+ "grade": "E",
"repositories": [
{
"url": "https://github.com/incubateur-ademe/territoires-en-transitions",
"vulnerabilityAlerts": {
- "totalCount": 28,
+ "totalCount": 32,
"nodes": [
{
"dismissedAt": null,
@@ -82015,42 +83693,6 @@
}
}
},
- {
- "dismissedAt": null,
- "createdAt": "2024-06-12T19:48:57Z",
- "securityVulnerability": {
- "severity": "HIGH",
- "package": {
- "name": "@strapi/plugin-users-permissions"
- },
- "advisory": {
- "identifiers": [
- {
- "type": "GHSA",
- "value": "GHSA-wrvh-rcmr-9qfc"
- },
- {
- "type": "CVE",
- "value": "CVE-2024-34065"
- }
- ],
- "references": [
- {
- "url": "https://github.com/strapi/strapi/security/advisories/GHSA-wrvh-rcmr-9qfc"
- },
- {
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34065"
- },
- {
- "url": "https://github.com/strapi/strapi/commit/9c79921d22142a5de77ea26151550a14e4b12669"
- },
- {
- "url": "https://github.com/advisories/GHSA-wrvh-rcmr-9qfc"
- }
- ]
- }
- }
- },
{
"dismissedAt": null,
"createdAt": "2024-06-17T21:55:23Z",
@@ -82090,99 +83732,6 @@
}
}
},
- {
- "dismissedAt": null,
- "createdAt": "2024-07-06T00:40:51Z",
- "securityVulnerability": {
- "severity": "LOW",
- "package": {
- "name": "certifi"
- },
- "advisory": {
- "identifiers": [
- {
- "type": "GHSA",
- "value": "GHSA-248v-346w-9cwc"
- },
- {
- "type": "CVE",
- "value": "CVE-2024-39689"
- }
- ],
- "references": [
- {
- "url": "https://github.com/certifi/python-certifi/security/advisories/GHSA-248v-346w-9cwc"
- },
- {
- "url": "https://github.com/certifi/python-certifi/commit/bd8153872e9c6fc98f4023df9c2deaffea2fa463"
- },
- {
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39689"
- },
- {
- "url": "https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/XpknYMPO8dI"
- },
- {
- "url": "https://security.netapp.com/advisory/ntap-20241206-0001"
- },
- {
- "url": "https://github.com/advisories/GHSA-248v-346w-9cwc"
- }
- ]
- }
- }
- },
- {
- "dismissedAt": null,
- "createdAt": "2024-08-13T00:00:46Z",
- "securityVulnerability": {
- "severity": "HIGH",
- "package": {
- "name": "axios"
- },
- "advisory": {
- "identifiers": [
- {
- "type": "GHSA",
- "value": "GHSA-8hc4-vh64-cxmj"
- },
- {
- "type": "CVE",
- "value": "CVE-2024-39338"
- }
- ],
- "references": [
- {
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39338"
- },
- {
- "url": "https://github.com/axios/axios/releases"
- },
- {
- "url": "https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.html"
- },
- {
- "url": "https://github.com/axios/axios/issues/6463"
- },
- {
- "url": "https://github.com/axios/axios/pull/6539"
- },
- {
- "url": "https://github.com/axios/axios/pull/6543"
- },
- {
- "url": "https://github.com/axios/axios/commit/6b6b605eaf73852fb2dae033f1e786155959de3a"
- },
- {
- "url": "https://github.com/axios/axios/releases/tag/v1.7.4"
- },
- {
- "url": "https://github.com/advisories/GHSA-8hc4-vh64-cxmj"
- }
- ]
- }
- }
- },
{
"dismissedAt": null,
"createdAt": "2024-08-29T04:05:12Z",
@@ -82240,60 +83789,6 @@
}
}
},
- {
- "dismissedAt": null,
- "createdAt": "2024-09-12T05:55:35Z",
- "securityVulnerability": {
- "severity": "HIGH",
- "package": {
- "name": "path-to-regexp"
- },
- "advisory": {
- "identifiers": [
- {
- "type": "GHSA",
- "value": "GHSA-9wv6-86v2-598j"
- },
- {
- "type": "CVE",
- "value": "CVE-2024-45296"
- }
- ],
- "references": [
- {
- "url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
- },
- {
- "url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
- },
- {
- "url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
- },
- {
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
- },
- {
- "url": "https://github.com/pillarjs/path-to-regexp/commit/925ac8e3c5780b02f58cbd4e52f95da8ad2ac485"
- },
- {
- "url": "https://github.com/pillarjs/path-to-regexp/commit/d31670ae8f6e69cbfd56e835742195b7d10942ef"
- },
- {
- "url": "https://github.com/pillarjs/path-to-regexp/commit/f1253b47b347dcb909e3e80b0eb2649109e59894"
- },
- {
- "url": "https://github.com/pillarjs/path-to-regexp/releases/tag/v6.3.0"
- },
- {
- "url": "https://security.netapp.com/advisory/ntap-20250124-0001"
- },
- {
- "url": "https://github.com/advisories/GHSA-9wv6-86v2-598j"
- }
- ]
- }
- }
- },
{
"dismissedAt": null,
"createdAt": "2024-10-08T07:22:39Z",
@@ -82623,48 +84118,6 @@
}
}
},
- {
- "dismissedAt": null,
- "createdAt": "2024-10-23T07:01:32Z",
- "securityVulnerability": {
- "severity": "HIGH",
- "package": {
- "name": "http-proxy-middleware"
- },
- "advisory": {
- "identifiers": [
- {
- "type": "GHSA",
- "value": "GHSA-c7qv-q95q-8v27"
- },
- {
- "type": "CVE",
- "value": "CVE-2024-21536"
- }
- ],
- "references": [
- {
- "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
- },
- {
- "url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
- },
- {
- "url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
- },
- {
- "url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
- },
- {
- "url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
- },
- {
- "url": "https://github.com/advisories/GHSA-c7qv-q95q-8v27"
- }
- ]
- }
- }
- },
{
"dismissedAt": null,
"createdAt": "2024-11-18T22:38:41Z",
@@ -82841,10 +84294,361 @@
]
}
}
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-04T14:53:04Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "webpack"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-4vvj-4cpr-p986"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2024-43788"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
+ },
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
+ },
+ {
+ "url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
+ },
+ {
+ "url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
+ },
+ {
+ "url": "https://scnps.co/papers/sp23_domclob.pdf"
+ },
+ {
+ "url": "https://github.com/webpack/webpack/issues/18718#issuecomment-2326296270"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-4vvj-4cpr-p986"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-10T20:40:58Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "esbuild"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-67mh-4wv8-2f99"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99"
+ },
+ {
+ "url": "https://github.com/evanw/esbuild/commit/de85afd65edec9ebc44a11e245fd9e9a2e99760d"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-67mh-4wv8-2f99"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-10T20:40:58Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "esbuild"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-67mh-4wv8-2f99"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99"
+ },
+ {
+ "url": "https://github.com/evanw/esbuild/commit/de85afd65edec9ebc44a11e245fd9e9a2e99760d"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-67mh-4wv8-2f99"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-10T20:40:59Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "esbuild"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-67mh-4wv8-2f99"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99"
+ },
+ {
+ "url": "https://github.com/evanw/esbuild/commit/de85afd65edec9ebc44a11e245fd9e9a2e99760d"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-67mh-4wv8-2f99"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-12T03:17:32Z",
+ "securityVulnerability": {
+ "severity": "LOW",
+ "package": {
+ "name": "certifi"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-248v-346w-9cwc"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2024-39689"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/certifi/python-certifi/security/advisories/GHSA-248v-346w-9cwc"
+ },
+ {
+ "url": "https://github.com/certifi/python-certifi/commit/bd8153872e9c6fc98f4023df9c2deaffea2fa463"
+ },
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39689"
+ },
+ {
+ "url": "https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/XpknYMPO8dI"
+ },
+ {
+ "url": "https://security.netapp.com/advisory/ntap-20241206-0001"
+ },
+ {
+ "url": "https://github.com/pypa/advisory-database/tree/main/vulns/certifi/PYSEC-2024-230.yaml"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-248v-346w-9cwc"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-12T20:08:43Z",
+ "securityVulnerability": {
+ "severity": "CRITICAL",
+ "package": {
+ "name": "koa"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-593f-38f6-jp5m"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2025-25200"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/koajs/koa/security/advisories/GHSA-593f-38f6-jp5m"
+ },
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-25200"
+ },
+ {
+ "url": "https://github.com/koajs/koa/commit/5054af6e31ffd451a4151a1fe144cef6e5d0d83c"
+ },
+ {
+ "url": "https://github.com/koajs/koa/commit/5f294bb1c7c8d9c61904378d250439a321bffd32"
+ },
+ {
+ "url": "https://github.com/koajs/koa/commit/93fe903fc966635a991bcf890cfc3427d33a1a08"
+ },
+ {
+ "url": "https://github.com/koajs/koa/releases/tag/2.15.4"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-593f-38f6-jp5m"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-12T20:44:19Z",
+ "securityVulnerability": {
+ "severity": "CRITICAL",
+ "package": {
+ "name": "koa"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-593f-38f6-jp5m"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2025-25200"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://github.com/koajs/koa/security/advisories/GHSA-593f-38f6-jp5m"
+ },
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-25200"
+ },
+ {
+ "url": "https://github.com/koajs/koa/commit/5054af6e31ffd451a4151a1fe144cef6e5d0d83c"
+ },
+ {
+ "url": "https://github.com/koajs/koa/commit/5f294bb1c7c8d9c61904378d250439a321bffd32"
+ },
+ {
+ "url": "https://github.com/koajs/koa/commit/93fe903fc966635a991bcf890cfc3427d33a1a08"
+ },
+ {
+ "url": "https://github.com/koajs/koa/releases/tag/2.15.4"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-593f-38f6-jp5m"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-14T19:20:56Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "dompurify"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-vhxf-7vqr-mrjg"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2025-26791"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-26791"
+ },
+ {
+ "url": "https://github.com/cure53/DOMPurify/commit/d18ffcb554e0001748865da03ac75dd7829f0f02"
+ },
+ {
+ "url": "https://ensy.zip/posts/dompurify-323-bypass"
+ },
+ {
+ "url": "https://github.com/cure53/DOMPurify/releases/tag/3.2.4"
+ },
+ {
+ "url": "https://nsysean.github.io/posts/dompurify-323-bypass"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-vhxf-7vqr-mrjg"
+ }
+ ]
+ }
+ }
+ },
+ {
+ "dismissedAt": null,
+ "createdAt": "2025-02-14T20:29:18Z",
+ "securityVulnerability": {
+ "severity": "MODERATE",
+ "package": {
+ "name": "dompurify"
+ },
+ "advisory": {
+ "identifiers": [
+ {
+ "type": "GHSA",
+ "value": "GHSA-vhxf-7vqr-mrjg"
+ },
+ {
+ "type": "CVE",
+ "value": "CVE-2025-26791"
+ }
+ ],
+ "references": [
+ {
+ "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-26791"
+ },
+ {
+ "url": "https://github.com/cure53/DOMPurify/commit/d18ffcb554e0001748865da03ac75dd7829f0f02"
+ },
+ {
+ "url": "https://ensy.zip/posts/dompurify-323-bypass"
+ },
+ {
+ "url": "https://github.com/cure53/DOMPurify/releases/tag/3.2.4"
+ },
+ {
+ "url": "https://nsysean.github.io/posts/dompurify-323-bypass"
+ },
+ {
+ "url": "https://github.com/advisories/GHSA-vhxf-7vqr-mrjg"
+ }
+ ]
+ }
+ }
}
]
},
- "grade": "D"
+ "grade": "E"
}
]
},
@@ -83029,7 +84833,7 @@
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'signed certificate timestamps/#18' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'"
+ "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'"
},
{
"id": "TLS_session_ticket",
@@ -83120,7 +84924,7 @@
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "8DE4DAE41EAB7118134FD34746759A4A"
+ "finding": "B16F677A9A6A27FD0E302F4E7DFA5C01"
},
{
"id": "cert_serialNumberLen ",
@@ -83134,21 +84938,21 @@
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "4565488DBB996A57C1FC03CAB2BD54FC72531F48"
+ "finding": "BE015157904CAD94D17CC04E1235523E54D9F30C"
},
{
"id": "cert_fingerprintSHA256 ",
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "35960946263E95EDE96214230D2634575981DF3F4F2D9785021F99D7E14A0996"
+ "finding": "CB967A6BB25F9D757F4C5021323EFAD81D6CD7D2A42D7BD1C5179B152584CF3D"
},
{
"id": "cert ",
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName ",
@@ -83196,22 +85000,22 @@
"id": "cert_expirationStatus ",
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
- "severity": "MEDIUM",
- "finding": "expires < 60 days (39)"
+ "severity": "OK",
+ "finding": "63 >= 60 days"
},
{
"id": "cert_notBefore ",
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-06 04:02"
+ "finding": "2025-02-03 04:23"
},
{
"id": "cert_notAfter ",
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
- "severity": "MEDIUM",
- "finding": "2025-03-06 04:02"
+ "severity": "OK",
+ "finding": "2025-05-04 05:21"
},
{
"id": "cert_extlifeSpan ",
@@ -83232,14 +85036,14 @@
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "http://c.pki.goog/wr1/fVl3KYUairc.crl"
+ "finding": "http://c.pki.goog/wr1/GdqwacXaYSQ.crl"
},
{
"id": "cert_ocspURL ",
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "http://o.pki.goog/s/wr1/jeQ"
+ "finding": "http://o.pki.goog/s/wr1/sW8"
},
{
"id": "OCSP_stapling ",
@@ -83421,7 +85225,7 @@
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "41E6F335BE90A32E0EE8AE246F262952"
+ "finding": "661308742D1C4B3113D43E9BD03FE5C3"
},
{
"id": "cert_serialNumberLen ",
@@ -83435,21 +85239,21 @@
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "0C56FFB0D8B4F7DD91A50F4253A467903B9A2073"
+ "finding": "5BF12E7D66AF836B77FA5DC9961A835AB029AE49"
},
{
"id": "cert_fingerprintSHA256 ",
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "C91D1BD5654765CB924FE65BE266CC54FF16DF9253A3BC983E909FCFD5E5E96E"
+ "finding": "9C2201F34A3EDD78FFA8E9BEDA969D7834954F5FA8572DFB3649D1D7856A65CB"
},
{
"id": "cert ",
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\nMIIDvTCCA2OgAwIBAgIQZhMIdC0cSzET1D6b0D/lwzAKBggqhkjOPQQDAjA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXRTEwHhcNMjUwMjAzMDQyMzU2WhcNMjUwNTA0MDUyMzM2WjAqMSgwJgYDVQQDEx9hcHAudGVycml0b2lyZXNlbnRyYW5zaXRpb25zLmZyMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAElicmzc7sVW51vrrxn/7HqSYM/T9S7KMAgW+EHEWaeZgCohz1UbnCllxS58BuvzRpQKmq2JSApt98SoeIUJrseqOCAlgwggJUMA4GA1UdDwEB/wQEAwIHgDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRZg4acyD3R7xc2FW1GN1pv9cE2wzAfBgNVHSMEGDAWgBSQd5I1Z8T/qMyp5nvZgHl7zJP5ODBeBggrBgEFBQcBAQRSMFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29nL3Mvd2UxL1poTTAlBggrBgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd2UxLmNydDAqBgNVHREEIzAhgh9hcHAudGVycml0b2lyZXNlbnRyYW5zaXRpb25zLmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMDYGA1UdHwQvMC0wK6ApoCeGJWh0dHA6Ly9jLnBraS5nb29nL3dlMS9KV1czR2o1NlpkNC5jcmwwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdwDPEVbu1S58r/OHW9lpLpvpGnFnSrAX7KwB0lt3zsw7CAAAAZTKQ+siAAAEAwBIMEYCIQCqZgeZ/RAvLHNHi9fh0sE4UqjtN9zbaLKalF2SYjOaJwIhALoP8SpKgRltpe4L1DxVnNsX38Hicob7QS+CQ48zfNb+AHUAE0rfGrWYQgl4DG/vTHqRpBa3I0nOWFdq367ap8Kr4CIAAAGUykPsIQAABAMARjBEAiAcrYtEHzxf05XzCQ7ey+ZlewpDKhF7cqMQKlYKZJhg9wIgXg30DgQC2njmWc0U/IROMZhtGkwI4vKR6BJqE/EzWdMwCgYIKoZIzj0EAwIDSAAwRQIgD8Gouv2Z6Xno1rJrERSzXmJHfLU6DCqeslTTOHlET1wCIQCceNUbSrbfffGsnZVq/27g+BAXQ9mJl12mS9LBBg+NHA==\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName ",
@@ -83497,22 +85301,22 @@
"id": "cert_expirationStatus ",
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
- "severity": "MEDIUM",
- "finding": "expires < 60 days (39)"
+ "severity": "OK",
+ "finding": "63 >= 60 days"
},
{
"id": "cert_notBefore ",
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-06 04:02"
+ "finding": "2025-02-03 04:23"
},
{
"id": "cert_notAfter ",
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
- "severity": "MEDIUM",
- "finding": "2025-03-06 04:02"
+ "severity": "OK",
+ "finding": "2025-05-04 05:23"
},
{
"id": "cert_extlifeSpan ",
@@ -83533,14 +85337,14 @@
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "http://c.pki.goog/we1/hx34Vi4ORbM.crl"
+ "finding": "http://c.pki.goog/we1/JWW3Gj56Zd4.crl"
},
{
"id": "cert_ocspURL ",
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "http://o.pki.goog/s/we1/QeY"
+ "finding": "http://o.pki.goog/s/we1/ZhM"
},
{
"id": "OCSP_stapling ",
@@ -83708,7 +85512,7 @@
"ip": "app.territoiresentransitions.fr/104.22.79.190",
"port": "443",
"severity": "INFO",
- "finding": "1737862811"
+ "finding": "1740886389"
},
{
"id": "HSTS",
@@ -83881,7 +85685,7 @@
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=35960946263E95EDE96214230D2634575981DF3F4F2D9785021F99D7E14A0996"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=CB967A6BB25F9D757F4C5021323EFAD81D6CD7D2A42D7BD1C5179B152584CF3D"
},
{
"id": "LOGJAM",
@@ -84261,77 +86065,77 @@
},
{
"id": "service",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -84339,7 +86143,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -84347,7 +86151,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -84355,7 +86159,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -84363,7 +86167,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -84371,7 +86175,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "LOW",
"cwe": "CWE-310",
@@ -84379,791 +86183,791 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-ECDSA-AES128-GCM-SHA256"
},
{
"id": "cipher_order",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "server -- TLS 1.3 client determined"
},
{
"id": "FS",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA"
},
{
"id": "FS_ECDHE_curves",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "prime256v1"
},
{
"id": "TLS_extensions",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'signed certificate timestamps/#18' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'"
+ "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'"
},
{
"id": "TLS_session_ticket",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "valid for 64800 seconds only (",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "SHA256 with RSA"
},
{
"id": "cert_keySize ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "RSA 2048 bits (exponent is 65537)"
},
{
"id": "cert_keyUsage ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "Digital Signature, Key Encipherment"
},
{
"id": "cert_extKeyUsage ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLS Web Server Authentication"
},
{
"id": "cert_serialNumber ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "8DE4DAE41EAB7118134FD34746759A4A"
+ "finding": "B16F677A9A6A27FD0E302F4E7DFA5C01"
},
{
"id": "cert_serialNumberLen ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "16"
},
{
"id": "cert_fingerprintSHA1 ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "4565488DBB996A57C1FC03CAB2BD54FC72531F48"
+ "finding": "BE015157904CAD94D17CC04E1235523E54D9F30C"
},
{
"id": "cert_fingerprintSHA256 ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "35960946263E95EDE96214230D2634575981DF3F4F2D9785021F99D7E14A0996"
+ "finding": "CB967A6BB25F9D757F4C5021323EFAD81D6CD7D2A42D7BD1C5179B152584CF3D"
},
{
"id": "cert ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "app.territoiresentransitions.fr"
},
{
"id": "cert_commonName_wo_SNI ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "request w/o SNI didn't succeed"
},
{
"id": "cert_subjectAltName ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "app.territoiresentransitions.fr"
},
{
"id": "cert_trust ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "Ok via SAN and CN (SNI mandatory)"
},
{
"id": "cert_chain_of_trust ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "passed."
},
{
"id": "cert_certificatePolicies_EV ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_expirationStatus ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
- "severity": "MEDIUM",
- "finding": "expires < 60 days (39)"
+ "severity": "OK",
+ "finding": "63 >= 60 days"
},
{
"id": "cert_notBefore ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-06 04:02"
+ "finding": "2025-02-03 04:23"
},
{
"id": "cert_notAfter ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
- "severity": "MEDIUM",
- "finding": "2025-03-06 04:02"
+ "severity": "OK",
+ "finding": "2025-05-04 05:21"
},
{
"id": "cert_extlifeSpan ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "http://c.pki.goog/wr1/fVl3KYUairc.crl"
+ "finding": "http://c.pki.goog/wr1/GdqwacXaYSQ.crl"
},
{
"id": "cert_ocspURL ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "http://o.pki.goog/s/wr1/jeQ"
+ "finding": "http://o.pki.goog/s/wr1/sW8"
},
{
"id": "OCSP_stapling ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cert_ocspRevoked ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "not revoked"
},
{
"id": "cert_mustStapleExtension ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "3"
},
{
"id": "certs_list_ordering_problem ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "WR1 (Google Trust Services from US)"
},
{
"id": "intermediate_cert <#1> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45"
},
{
"id": "intermediate_cert_notBefore <#1> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "2023-12-13 09:00"
},
{
"id": "intermediate_cert_notAfter <#1> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "2029-02-20 14:00"
},
{
"id": "intermediate_cert_expiration <#1> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "WR1 <-- GTS Root R1"
},
{
"id": "intermediate_cert <#2> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#2> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5"
},
{
"id": "intermediate_cert_notBefore <#2> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "2020-06-19 00:00"
},
{
"id": "intermediate_cert_notAfter <#2> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "2028-01-28 00:00"
},
{
"id": "intermediate_cert_expiration <#2> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#2> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "GTS Root R1 <-- GlobalSign Root CA"
},
{
"id": "intermediate_cert_badOCSP ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "cert_signatureAlgorithm ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "ECDSA with SHA256"
},
{
"id": "cert_keySize ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "EC 256 bits (curve P-256)"
},
{
"id": "cert_keyUsage ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "Digital Signature"
},
{
"id": "cert_extKeyUsage ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLS Web Server Authentication"
},
{
"id": "cert_serialNumber ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "41E6F335BE90A32E0EE8AE246F262952"
+ "finding": "661308742D1C4B3113D43E9BD03FE5C3"
},
{
"id": "cert_serialNumberLen ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "16"
},
{
"id": "cert_fingerprintSHA1 ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "0C56FFB0D8B4F7DD91A50F4253A467903B9A2073"
+ "finding": "5BF12E7D66AF836B77FA5DC9961A835AB029AE49"
},
{
"id": "cert_fingerprintSHA256 ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "C91D1BD5654765CB924FE65BE266CC54FF16DF9253A3BC983E909FCFD5E5E96E"
+ "finding": "9C2201F34A3EDD78FFA8E9BEDA969D7834954F5FA8572DFB3649D1D7856A65CB"
},
{
"id": "cert ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\nMIIDvTCCA2OgAwIBAgIQQebzNb6Qoy4O6K4kbyYpUjAKBggqhkjOPQQDAjA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXRTEwHhcNMjQxMjA2MDQwMjUwWhcNMjUwMzA2MDQwMjQ5WjAqMSgwJgYDVQQDEx9hcHAudGVycml0b2lyZXNlbnRyYW5zaXRpb25zLmZyMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEviwlZnUJcF7n3N7VpDe4WbPaBCDGvrLICyI4KUyyxNcXex7jjKg+29blLJixS9kHOLSbKstt0oI2StGUSikA0qOCAlgwggJUMA4GA1UdDwEB/wQEAwIHgDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRHSGlZ9Ovu+Gq5hOhpD9TWrEH+2DAfBgNVHSMEGDAWgBSQd5I1Z8T/qMyp5nvZgHl7zJP5ODBeBggrBgEFBQcBAQRSMFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29nL3Mvd2UxL1FlWTAlBggrBgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd2UxLmNydDAqBgNVHREEIzAhgh9hcHAudGVycml0b2lyZXNlbnRyYW5zaXRpb25zLmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMDYGA1UdHwQvMC0wK6ApoCeGJWh0dHA6Ly9jLnBraS5nb29nL3dlMS9oeDM0Vmk0T1JiTS5jcmwwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgBOdaMnXJoQwzhbbNTfP1LrHfDgjhuNacCx+mSxYpo53wAAAZOaWWlRAAAEAwBHMEUCIEVLKUc3ClIH/qtLcbW23176Z8bZivGh31rMmsM7hB+fAiEAw2TJqnIIjeIr3CBNtpF+DVs2Nu1loxsAbLq1JUmN3DQAdgDm0jFjQHeMwRBBBtdxuc7B0kD2loSG+7qHMh39HjeOUAAAAZOaWWlxAAAEAwBHMEUCIQC4Iy9NFvNILMYhGizUnPYx7yBUbq0uSnU0E3jcq8SH3QIgI4aUVvfhUWgQ5O7eYA+sebAUjFFa6CXBxDBiME7QBn4wCgYIKoZIzj0EAwIDSAAwRQIgbT2Kq2poAeVxoYFe6CMRPfmdFWjjan4tLcw+geTpey0CIQCqRysbUzM89BBIR0OiMz3oOu71eDOy/mKfxz8isMihDw==\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "app.territoiresentransitions.fr"
},
{
"id": "cert_commonName_wo_SNI ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "request w/o SNI didn't succeed, usual for EC certificates"
},
{
"id": "cert_subjectAltName ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "app.territoiresentransitions.fr"
},
{
"id": "cert_trust ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "Ok via SAN and CN (SNI mandatory)"
},
{
"id": "cert_chain_of_trust ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "passed."
},
{
"id": "cert_certificatePolicies_EV ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_expirationStatus ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
- "severity": "MEDIUM",
- "finding": "expires < 60 days (39)"
+ "severity": "OK",
+ "finding": "63 >= 60 days"
},
{
"id": "cert_notBefore ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-06 04:02"
+ "finding": "2025-02-03 04:23"
},
{
"id": "cert_notAfter ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
- "severity": "MEDIUM",
- "finding": "2025-03-06 04:02"
+ "severity": "OK",
+ "finding": "2025-05-04 05:23"
},
{
"id": "cert_extlifeSpan ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "http://c.pki.goog/we1/hx34Vi4ORbM.crl"
+ "finding": "http://c.pki.goog/we1/JWW3Gj56Zd4.crl"
},
{
"id": "cert_ocspURL ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "http://o.pki.goog/s/we1/QeY"
+ "finding": "http://o.pki.goog/s/we1/ZhM"
},
{
"id": "OCSP_stapling ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cert_ocspRevoked ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "not revoked"
},
{
"id": "cert_mustStapleExtension ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "3"
},
{
"id": "certs_list_ordering_problem ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "WE1 (Google Trust Services from US)"
},
{
"id": "intermediate_cert <#1> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96"
},
{
"id": "intermediate_cert_notBefore <#1> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "2023-12-13 09:00"
},
{
"id": "intermediate_cert_notAfter <#1> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "2029-02-20 14:00"
},
{
"id": "intermediate_cert_expiration <#1> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "WE1 <-- GTS Root R4"
},
{
"id": "intermediate_cert <#2> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#2> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7"
},
{
"id": "intermediate_cert_notBefore <#2> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "2023-11-15 03:43"
},
{
"id": "intermediate_cert_notAfter <#2> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "2028-01-28 00:00"
},
{
"id": "intermediate_cert_expiration <#2> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#2> ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "GTS Root R4 <-- GlobalSign Root CA"
},
{
"id": "intermediate_cert_badOCSP ",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "HTTP_status_code",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "200 OK ('/')"
},
{
"id": "HTTP_clock_skew",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "0 seconds from localtime"
},
{
"id": "HTTP_headerTime",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
- "finding": "1737862868"
+ "finding": "1740886448"
},
{
"id": "HSTS",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "LOW",
"finding": "not offered"
},
{
"id": "HPKP",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "No support for HTTP Public Key Pinning"
},
{
"id": "banner_server",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "cloudflare"
},
{
"id": "banner_application",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "x-powered-by: Next.js"
},
{
"id": "cookie_count",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "0 at '/'"
},
{
"id": "Cache-Control",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "private, no-cache, no-store, max-age=0, must-revalidate"
},
{
"id": "banner_reverseproxy",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"cwe": "CWE-200",
@@ -85171,7 +86975,7 @@
},
{
"id": "heartbleed",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0160",
@@ -85180,7 +86984,7 @@
},
{
"id": "CCS",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-0224",
@@ -85189,7 +86993,7 @@
},
{
"id": "ticketbleed",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-9244",
@@ -85198,7 +87002,7 @@
},
{
"id": "ROBOT",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
@@ -85207,7 +87011,7 @@
},
{
"id": "secure_renego",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cwe": "CWE-310",
@@ -85215,7 +87019,7 @@
},
{
"id": "secure_client_renego",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-1473",
@@ -85224,7 +87028,7 @@
},
{
"id": "CRIME_TLS",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cve": "CVE-2012-4929",
@@ -85233,7 +87037,7 @@
},
{
"id": "BREACH",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "MEDIUM",
"cve": "CVE-2013-3587",
@@ -85242,7 +87046,7 @@
},
{
"id": "POODLE_SSL",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-3566",
@@ -85251,14 +87055,14 @@
},
{
"id": "fallback_SCSV",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "no protocol below TLS 1.2 offered"
},
{
"id": "SWEET32",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-2183 CVE-2016-6329",
@@ -85267,7 +87071,7 @@
},
{
"id": "FREAK",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-0204",
@@ -85276,7 +87080,7 @@
},
{
"id": "DROWN",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cve": "CVE-2016-0800 CVE-2016-0703",
@@ -85285,16 +87089,16 @@
},
{
"id": "DROWN_hint",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"cve": "CVE-2016-0800 CVE-2016-0703",
"cwe": "CWE-310",
- "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=35960946263E95EDE96214230D2634575981DF3F4F2D9785021F99D7E14A0996"
+ "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=CB967A6BB25F9D757F4C5021323EFAD81D6CD7D2A42D7BD1C5179B152584CF3D"
},
{
"id": "LOGJAM",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -85303,7 +87107,7 @@
},
{
"id": "LOGJAM-common_primes",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cve": "CVE-2015-4000",
@@ -85312,7 +87116,7 @@
},
{
"id": "BEAST",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cve": "CVE-2011-3389",
@@ -85321,7 +87125,7 @@
},
{
"id": "LUCKY13",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "LOW",
"cve": "CVE-2013-0169",
@@ -85330,7 +87134,7 @@
},
{
"id": "winshock",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cve": "CVE-2014-6321",
@@ -85339,7 +87143,7 @@
},
{
"id": "RC4",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"cve": "CVE-2013-2566 CVE-2015-2808",
@@ -85348,399 +87152,399 @@
},
{
"id": "clientsimulation-android_60",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_70",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_81",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-android_90",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-android_X",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-android_11",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-android_12",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-chrome_79_win10",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-chrome_101_win10",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-firefox_66_win81",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-firefox_100_win10",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-ie_6_xp",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_win7",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_8_xp",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-ie_11_win7",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-ie_11_win81",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-ie_11_winphone81",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-ie_11_win10",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-edge_15_win10",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-edge_101_win10_21h2",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-safari_121_ios_122",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256"
},
{
"id": "clientsimulation-safari_130_osx_10146",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256"
},
{
"id": "clientsimulation-safari_154_osx_1231",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-java_7u25",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "No connection"
},
{
"id": "clientsimulation-java_8u161",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-java1102",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-java1703",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-go_1178",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "clientsimulation-libressl_283",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305"
},
{
"id": "clientsimulation-openssl_102e",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-openssl_110l",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305"
},
{
"id": "clientsimulation-openssl_111d",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-openssl_303",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_256_GCM_SHA384"
},
{
"id": "clientsimulation-apple_mail_16_0",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
},
{
"id": "clientsimulation-thunderbird_91_9",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "TLSv1.3 TLS_AES_128_GCM_SHA256"
},
{
"id": "rating_spec",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)"
},
{
"id": "rating_doc",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide"
},
{
"id": "protocol_support_score",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "100"
},
{
"id": "protocol_support_score_weighted",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "30"
},
{
"id": "key_exchange_score",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "90"
},
{
"id": "key_exchange_score_weighted",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "27"
},
{
"id": "cipher_strength_score",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "60"
},
{
"id": "cipher_strength_score_weighted",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "24"
},
{
"id": "final_score",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "81"
},
{
"id": "overall_grade",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "OK",
"finding": "A"
},
{
"id": "grade_cap_reason_1",
- "ip": "app.territoiresentransitions.fr/172.67.24.44",
+ "ip": "app.territoiresentransitions.fr/104.22.78.190",
"port": "443",
"severity": "INFO",
"finding": "Grade capped to A. HSTS is not offered"
},
{
"id": "service",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "HTTP"
},
{
"id": "pre_128cipher",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "No 128 cipher limit bug"
},
{
"id": "SSLv2",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "SSLv3",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "not offered"
},
{
"id": "TLS1",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_1",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "not offered"
},
{
"id": "TLS1_2",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "TLS1_3",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "offered with final"
},
{
"id": "ALPN_HTTP2",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "h2"
},
{
"id": "ALPN",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "http/1.1"
},
{
"id": "cipherlist_NULL",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -85748,7 +87552,7 @@
},
{
"id": "cipherlist_aNULL",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -85756,7 +87560,7 @@
},
{
"id": "cipherlist_EXPORT",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -85764,7 +87568,7 @@
},
{
"id": "cipherlist_LOW",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"cwe": "CWE-327",
@@ -85772,7 +87576,7 @@
},
{
"id": "cipherlist_3DES_IDEA",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"cwe": "CWE-310",
@@ -85780,7 +87584,7 @@
},
{
"id": "cipherlist_OBSOLETED",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "LOW",
"cwe": "CWE-310",
@@ -85788,791 +87592,791 @@
},
{
"id": "cipherlist_STRONG_NOFS",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipherlist_STRONG_FS",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cipher_order-tls1_2",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "server"
},
{
"id": "cipherorder_TLSv1_2",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-ECDSA-AES128-GCM-SHA256"
},
{
"id": "cipher_order",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "server -- TLS 1.3 client determined"
},
{
"id": "FS",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "FS_ciphers",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA"
},
{
"id": "FS_ECDHE_curves",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "prime256v1"
},
{
"id": "TLS_extensions",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'signed certificate timestamps/#18' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'"
+ "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'"
},
{
"id": "TLS_session_ticket",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "valid for 64800 seconds only (",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "SHA256 with RSA"
},
{
"id": "cert_keySize ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "RSA 2048 bits (exponent is 65537)"
},
{
"id": "cert_keyUsage ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "Digital Signature, Key Encipherment"
},
{
"id": "cert_extKeyUsage ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "TLS Web Server Authentication"
},
{
"id": "cert_serialNumber ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "8DE4DAE41EAB7118134FD34746759A4A"
+ "finding": "B16F677A9A6A27FD0E302F4E7DFA5C01"
},
{
"id": "cert_serialNumberLen ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "16"
},
{
"id": "cert_fingerprintSHA1 ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "4565488DBB996A57C1FC03CAB2BD54FC72531F48"
+ "finding": "BE015157904CAD94D17CC04E1235523E54D9F30C"
},
{
"id": "cert_fingerprintSHA256 ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "35960946263E95EDE96214230D2634575981DF3F4F2D9785021F99D7E14A0996"
+ "finding": "CB967A6BB25F9D757F4C5021323EFAD81D6CD7D2A42D7BD1C5179B152584CF3D"
},
{
"id": "cert ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "app.territoiresentransitions.fr"
},
{
"id": "cert_commonName_wo_SNI ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "request w/o SNI didn't succeed"
},
{
"id": "cert_subjectAltName ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "app.territoiresentransitions.fr"
},
{
"id": "cert_trust ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "Ok via SAN and CN (SNI mandatory)"
},
{
"id": "cert_chain_of_trust ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "passed."
},
{
"id": "cert_certificatePolicies_EV ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_expirationStatus ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
- "severity": "MEDIUM",
- "finding": "expires < 60 days (39)"
+ "severity": "OK",
+ "finding": "63 >= 60 days"
},
{
"id": "cert_notBefore ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "2024-12-06 04:02"
+ "finding": "2025-02-03 04:23"
},
{
"id": "cert_notAfter ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
- "severity": "MEDIUM",
- "finding": "2025-03-06 04:02"
+ "severity": "OK",
+ "finding": "2025-05-04 05:21"
},
{
"id": "cert_extlifeSpan ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "certificate has no extended life time according to browser forum"
},
{
"id": "cert_eTLS ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "not present"
},
{
"id": "cert_crlDistributionPoints ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "http://c.pki.goog/wr1/fVl3KYUairc.crl"
+ "finding": "http://c.pki.goog/wr1/GdqwacXaYSQ.crl"
},
{
"id": "cert_ocspURL ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "http://o.pki.goog/s/wr1/jeQ"
+ "finding": "http://o.pki.goog/s/wr1/sW8"
},
{
"id": "OCSP_stapling ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "offered"
},
{
"id": "cert_ocspRevoked ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "not revoked"
},
{
"id": "cert_mustStapleExtension ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "--"
},
{
"id": "DNS_CAArecord ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "LOW",
"finding": "--"
},
{
"id": "certificate_transparency ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "yes (certificate extension)"
},
{
"id": "certs_countServer ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "3"
},
{
"id": "certs_list_ordering_problem ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "no"
},
{
"id": "cert_caIssuers ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "WR1 (Google Trust Services from US)"
},
{
"id": "intermediate_cert <#1> ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\nMIIFCzCCAvOgAwIBAgIQf9niwtIEigR0tieibQhopzANBgkqhkiG9w0BAQsFADBHMQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3QgUjEwHhcNMjMxMjEzMDkwMDAwWhcNMjkwMjIwMTQwMDAwWjA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXUjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPbjYWircr7kaYAx1TcA937qNLoHK+jyMtwkfGj1yN+T3mGo7uMyINyRFIuLBizvRpDXICfd7VJg/DbpvPfg7XIM/GkDujggbaOp3/bFa/3OlhlEXkabxPD8kTwK1hRHIggdAPK55oamJqj4oiV3lpK+IkM352YyxdvFFpfiMHsf92gfHuuFi1azUV76HmSCg5lzHZBx+Vp56uz5i8no2KA+Gwl01Qb5NMSh/4233xkJkVf+OW7e4xgepyPVId3yVkpQtwqp7oqLlHyKdaECVgb0Lh1z/njwzwwoNGMyDmS3cEdqFop10VGO/YKHc1rQ6tRuRibuKq+MzvN34PJrMHAgMBAAGjgf4wgfswDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBRmaUnU3iqckQPPiQ4kuA4wA26ILjAfBgNVHSMEGDAWgBTkrysmcRorSCeFL1JmLO/wiRNxPjA0BggrBgEFBQcBAQQoMCYwJAYIKwYBBQUHMAKGGGh0dHA6Ly9pLnBraS5nb29nL3IxLmNydDArBgNVHR8EJDAiMCCgHqAchhpodHRwOi8vYy5wa2kuZ29vZy9yL3IxLmNybDATBgNVHSAEDDAKMAgGBmeBDAECATANBgkqhkiG9w0BAQsFAAOCAgEATuazCBEgkWAn+VGQTQIY7rjBidUihJfm1t/mTjo7KQR+3iDx4o2L06oeF0Q3wpKYpQgI/TeMqUlYMWQmZbWPE0PX8pfsVAE5E5tVOjh34bNAJwDPVnsZVJwzN3nw5BGQ7sxRspFzIcM/qbbTpNeXf9II4Wsk2+Tv6FSVFZUL3/0uHradbruDWjRQ4IZ7mYqKiEqk08dpOZ+TmBzwykEGy1/IXberb6Ap1SSnn2+RI7t6N/fqPCrwwFjp8kg1G6etRATGBaPYCx+GjJMFPX+k97Alvoj3/98SvqdegLPYEPjvxUclHpiKLD63NMmVarVQddIL6kOvTe5k0pnxRnR+mndGHIQc77TLbcZFeja56PynlSqmer578c7CBrPqo1BVmPyWUK+v6sGuzs7Mq7QQaxVs4710cI/MpPp1ovxMVt17ENKxLk34LpEKAKVmqwnzbHHRjhXNeCC984XDOwLEp0K4MzHl8ZOWJQAakCdVlFC+PyA3GP2JX/QLoqWNHGuN9c9vLObDhHVs/L+65De+OdnnjpFGI9xxtsNyRsyaHdFAf5z7ulOoXDXkHCCej/Ehs5docReNt16W2xbH/EBuirJrOzFE2rtALxksl1TdEjOfIKXOJfUqQeVI5+hA7V+n1+A/n7Npg0S+5ODytWh5XW54ccN1drJnMK54ttozh0c=\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#1> ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45"
},
{
"id": "intermediate_cert_notBefore <#1> ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "2023-12-13 09:00"
},
{
"id": "intermediate_cert_notAfter <#1> ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "2029-02-20 14:00"
},
{
"id": "intermediate_cert_expiration <#1> ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#1> ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "WR1 <-- GTS Root R1"
},
{
"id": "intermediate_cert <#2> ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "intermediate_cert_fingerprintSHA256 <#2> ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5"
},
{
"id": "intermediate_cert_notBefore <#2> ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "2020-06-19 00:00"
},
{
"id": "intermediate_cert_notAfter <#2> ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "2028-01-28 00:00"
},
{
"id": "intermediate_cert_expiration <#2> ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "ok > 40 days"
},
{
"id": "intermediate_cert_chain <#2> ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "GTS Root R1 <-- GlobalSign Root CA"
},
{
"id": "intermediate_cert_badOCSP ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "intermediate certificate(s) is/are ok"
},
{
"id": "cert_signatureAlgorithm ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "ECDSA with SHA256"
},
{
"id": "cert_keySize ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "EC 256 bits (curve P-256)"
},
{
"id": "cert_keyUsage ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "Digital Signature"
},
{
"id": "cert_extKeyUsage ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "TLS Web Server Authentication"
},
{
"id": "cert_serialNumber ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "41E6F335BE90A32E0EE8AE246F262952"
+ "finding": "661308742D1C4B3113D43E9BD03FE5C3"
},
{
"id": "cert_serialNumberLen ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "16"
},
{
"id": "cert_fingerprintSHA1 ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "0C56FFB0D8B4F7DD91A50F4253A467903B9A2073"
+ "finding": "5BF12E7D66AF836B77FA5DC9961A835AB029AE49"
},
{
"id": "cert_fingerprintSHA256 ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "C91D1BD5654765CB924FE65BE266CC54FF16DF9253A3BC983E909FCFD5E5E96E"
+ "finding": "9C2201F34A3EDD78FFA8E9BEDA969D7834954F5FA8572DFB3649D1D7856A65CB"
},
{
"id": "cert ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
- "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
+ "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----"
},
{
"id": "cert_commonName ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "OK",
"finding": "app.territoiresentransitions.fr"
},
{
"id": "cert_commonName_wo_SNI ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "request w/o SNI didn't succeed, usual for EC certificates"
},
{
"id": "cert_subjectAltName ",
- "ip": "app.territoiresentransitions.fr/104.22.78.190",
+ "ip": "app.territoiresentransitions.fr/172.67.24.44",
"port": "443",
"severity": "INFO",
"finding": "app.territoiresentransitions.fr"
},
{
"id": "cert_trust